www.primainsure.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:30:f0:c5:34:e3:3b:5d:22:3d:2d:1c:67:1c:a0:8b:d1:e0 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.primainsure.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:30:f0:c5:34:e3:3b:5d:22:3d:2d:1c:67:1c:a0:8b:d1:e0Serial Number (int): 277990450081643761844647926457594477793760
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 9d:13:c2:c1:81:43:ea:0e:d9:b0:de:59:1b:13:2f:b7:15:0f:ba:4b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): c1:81:44:32:e4:93:81:b5:d3:43:1b:dc:f9:47:20:a4:7b:12:0d:b5
Fingerprint (sha256): f5:67:49:cb:ab:0e:8a:5e:bc:97:b0:72:e7:e0:c9:3f:5e:02:be:b6:50:cb:fd:cd:a8:be:a1:6a:78:aa:0f:22
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.primainsure.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.primainsure.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.primainsure.com
Other certificates including the domain name primainsure.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.primainsure.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXzCCBUegAwIBAgISAzDwxTTjO10iPS0cZxygi9HgMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MTUwNjIzMzBaFw0x OTEyMTQwNjIzMzBaMB4xHDAaBgNVBAMTE3d3dy5wcmltYWluc3VyZS5jb20wggIi MA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDSCwvRcsMSr9jOHs9A5tkzAne0 83IqDQVotbfutp3qfRZAFMD0DSPcZ73rSM9EtpDf/X+a2orFl6D8cjxYnsWmTjh0 XOWMKK107au7FsB4vv2BZUAKYgTEZeJu5Ft4LKDo3JThzIphciHUChkxh+/hC2OT VrR9sfqIPZh8tvTwdsmHx4aoL3BgyUPtPJNWrSBNLJ5Q7J9CmB6rpPZzF+qih9OL t8OZ7PhAts2qD06w/Mzbx9hTWa29JtiqDuL3pmcqfI2kd8ugA/+Rr3NMy6WGwMtQ XSXBXqIoLfnyT6F99hNnNWurLoSLrdeaCOqhBai8nlTx8NP4vivczJeayKTWP+NY qe46vP05Ld5mQ6EZpc7ZM5kefwhrgObqMlq10baU/vNTowSSA4o/gondi1vzXadW 8OYK6lyCh88LML81+KQA1g1S7T/treQfW1NfEIDGrdVvn2cnlTxIAIcLUs1cyl0p ntI4aOJih9LDNBTA0I7kk3kItZZg449TMMY+zFSIvzJ2kn1nDmSFgS0q7yptfpuZ XkOmI53BI9m+p/Csg/EsSCL0IDK2KxgxrbGYXfMSpT1k5pyJXhxC7VPOjY1QNj4t vOq2dFZl8MZpX+ncZRC9jvGW6r9MiioyE5sz7sH1HEOk2Q221yGwpcZn7PSfmLBH DNWzUa1rckJEEok1YwIDAQABo4ICaTCCAmUwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBSdE8LBgUPqDtmw3lkbEy+3FQ+6SzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObem RWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3Nw LmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0 LmludC14My5sZXRzZW5jcnlwdC5vcmcvMB4GA1UdEQQXMBWCE3d3dy5wcmltYWlu c3VyZS5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAm BggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEE AdZ5AgQCBIH2BIHzAPEAdgDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb /gAAAW0zziJ5AAAEAwBHMEUCIQDc6FIcT9GesStVV6m1zBF45HJat7cc4Gi4NK3T mIlr5QIgAJ+4wKzyVNckuTh2Tf3BRS69dKNHpM8RE0MHQLMwrBUAdwApPFGWVMg5 ZbqqUPxYB9S3b79Yeily3KTDDPTlRUf0eAAAAW0zziSSAAAEAwBIMEYCIQCpjkbj W5kFYWaIyy1XP0ogXayzLh/r5om9T2cQbJt8cwIhAKzMOy1ZV3umFqiM4TJR0NuJ Mvm9tDb4e2rSaR2dAtRnMA0GCSqGSIb3DQEBCwUAA4IBAQBI94bqAka2bN7t3JW8 CZeo+UgONcGi8vvfxmM75rxKMdN3KEVpm5jZnNVV9Um+cHu6wkfm+1wWT9GkZcXB imQ7Y1RiMjzuVwBwhBTBKqoq3D5avsG4eIOmCkEgy13Ny+B+tNOw0RYVH5xu6UiA N/LxsVrtBALLvd8yxg48DC/JyGd4/8dzPTcXSA5ICuu1vQwWZOHxyfiHyi9ZxmnQ Y69GRRTdVlE+bGEfKKMIHyEAqcjGDQ8IONwaGmi3j+zvdgr2J8tA6UnqGLLvtDZj WAKOl15opvFJCMqmh1QHrZcyMiiselrf1vHJitbg2Oc5ZNhzlPa6j73ViH7Hy2id bc2m -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0gsL0XLDEq/Yzh7PQObZ MwJ3tPNyKg0FaLW37rad6n0WQBTA9A0j3Ge960jPRLaQ3/1/mtqKxZeg/HI8WJ7F pk44dFzljCitdO2ruxbAeL79gWVACmIExGXibuRbeCyg6NyU4cyKYXIh1AoZMYfv 4Qtjk1a0fbH6iD2YfLb08HbJh8eGqC9wYMlD7TyTVq0gTSyeUOyfQpgeq6T2cxfq oofTi7fDmez4QLbNqg9OsPzM28fYU1mtvSbYqg7i96ZnKnyNpHfLoAP/ka9zTMul hsDLUF0lwV6iKC358k+hffYTZzVrqy6Ei63XmgjqoQWovJ5U8fDT+L4r3MyXmsik 1j/jWKnuOrz9OS3eZkOhGaXO2TOZHn8Ia4Dm6jJatdG2lP7zU6MEkgOKP4KJ3Ytb 812nVvDmCupcgofPCzC/NfikANYNUu0/7a3kH1tTXxCAxq3Vb59nJ5U8SACHC1LN XMpdKZ7SOGjiYofSwzQUwNCO5JN5CLWWYOOPUzDGPsxUiL8ydpJ9Zw5khYEtKu8q bX6bmV5DpiOdwSPZvqfwrIPxLEgi9CAytisYMa2xmF3zEqU9ZOaciV4cQu1Tzo2N UDY+LbzqtnRWZfDGaV/p3GUQvY7xluq/TIoqMhObM+7B9RxDpNkNttchsKXGZ+z0 n5iwRwzVs1Gta3JCRBKJNWMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 277990450081643761844647926457594477793760 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-15 06:23:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-14 06:23:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.primainsure.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 856901287175632788980510812436291690237069461335737482272050892331947672308122542916309001754571395056641174075543743063849092979800355073591486892618198800653305729899425416745907838804703082703986248795410854329104941129873838768074535990556425012150959193476600116096302159790025543733555316875178442804386069356370804092225748938330728423053470232190066209393859894008717043161142720138491694760167856388080646113744500383210304964286844076085563250043210735150199819329229783787827007666958882215972502242094532069379774627744702071075146380427827784914717989745939247627699533551774087363983380099455937635729505244203358747702072769749854183574520401503309359035537707511079337393203954798228749257607786297414681895386001850204229570624023111517579870498443393646396329443548055031559568843024681091548800968721845461876705550696381042702816820842571854764378423692285471277036158464213719906560703418343309160646955966844481979174608303351063506688119839573690217753101709590075201706841597943534105039095905013293397444571096060366040656662421987438253248426459413071936944328835405931180842411364087501669122066573587933343399179097860632020217831215493712657843600932811063503860670196156758197266906736805291952458773859 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9d13c2c18143ea0ed9b0de591b132fb7150fba4b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.primainsure.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016d33ce22790000040300473045022100dce8521c4fd19eb12b5557a9b5cc1178e4725ab7b71ce068b834add398896be50220009fb8c0acf254d724b938764dfdc1452ebd74a347a4cf1113430740b330ac15007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d33ce24920000040300483046022100a98e46e35b9905616688cb2d573f4a205dacb32e1febe689bd4f67106c9b7c73022100accc3b2d59577ba616a88ce13251d0db8932f9bdb436f87b6ad2691d9d02d467 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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