www.bonarda.net

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:3b:21:db:92:75:c5:9d:31:d4:c0:60:47:76:73:0f:d4:d6 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.bonarda.net

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:3b:21:db:92:75:c5:9d:31:d4:c0:60:47:76:73:0f:d4:d6
Serial Number (int): 281458522051051686366189097590286351062230
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 2e:3c:14:6c:4b:e1:83:a0:ba:c2:76:46:43:f5:37:30:c9:f8:dd:db
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 33:97:b3:7e:9c:10:6f:97:75:d7:f8:5a:8f:b5:34:17:f4:e6:47:1c
Fingerprint (sha256): f4:67:83:4b:8b:f5:a9:6b:27:12:e8:db:8a:5a:80:12:7d:0f:23:15:46:06:29:59:54:7c:08:84:c3:6f:32:d5

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.bonarda.net

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.bonarda.net

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.bonarda.net

Other certificates including the domain name bonarda.net

(limited to 100 certificates)
bonarda.net
www.bonarda.net
bonarda.net
www.bonarda.net
bonarda.net
bonarda.net
www.coma.net
www.bonarda.net
www.bonarda.net
bonarda.net
bonarda.net
www.bonarda.net
bonarda.net
www.bonarda.net
bonarda.net

Certificate

The complete raw certificate details for www.bonarda.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 281458522051051686366189097590286351062230
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-10 08:19:21 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-08 08:19:21 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.bonarda.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 879855642647271862946809730817590900429795961215502128126990936503115691899943467841581836050281032271595933219139145045736541823332210747652003817841981866198853257724337251564290335722715156047848279121993520525166504776215216823798047078342199835432610732470131066734912103074095986138345883798933150463317014157887333384698846314594103382530713567360640176071479734731580728529970651822794060494592365973229763012083633751998422466776824662776761301256353631675127710802493114284749304965777834704025923191285732373645289616546173267002623594277705888783243568298742085294516193424195733120849179139727918414629026855424190674089993142941292690090671534223599365881983356024248831955989715918524453980242325622274744864157710468325657166029064991176290318573412932579730341564342368343576550657214250951199832394164240232178237879902958590772546649420394870755679068082073305930464171863355430437212228107340420016101160930884817264055864656187758163705756704737061274717298780640621316795702996553643008517305032929222115988694262439187721427113883000502880732940872408956096762787217193619733235458873616217675382756419790811315472344688235802781338758639347748044847637747760939120434801895629607396837524716642850446574023471
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							2e3c146c4be183a0bac2764643f53730c9f8dddb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bonarda.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016e549c55200000040300473045022073f3923b423c3626fe89ad34cc80c3d2830de2a6c4772f540896f9a6078cc307022100acbb74fd0d6b7a1c2d675b6d32ce57f7f482390bdbf073bf03e05958b45bed650076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016e549c56ee000004030047304502204453d24fdfedc46a2ad41bc5d3a847688e83dc10829eb07116a5c25d803f1509022100aa11298f75c529a717aec1db00c5efa9bcceb64c4a45c43f4f4ad0e0537f120e
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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