a.mpjonsson.se

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:a7:cc:d1:5c:36:c3:ee:b7:3d:0a:25:e0:40:9d:26:91:55 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=a.mpjonsson.se

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:a7:cc:d1:5c:36:c3:ee:b7:3d:0a:25:e0:40:9d:26:91:55
Serial Number (int): 318436262642581662433605230256800672420181
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: d5:26:b0:41:7a:a8:c8:10:e5:9c:97:2a:d7:43:8c:48:40:7e:da:be
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): e1:ab:1a:ee:99:af:a8:42:ff:a3:10:ba:c8:8b:1e:c2:41:1f:99:f6
Fingerprint (sha256): f8:df:54:79:d2:4f:c0:6e:e6:8a:a1:78:d4:96:94:51:f3:64:4b:d6:d5:d0:51:e5:33:0f:c7:a0:0e:d3:24:e6

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org/

Check the revocation status for certificate a.mpjonsson.se

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for a.mpjonsson.se

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

a.mpjonsson.se
www.a.mpjonsson.se

Other certificates including the domain name mpjonsson.se

(limited to 100 certificates)
a.mpjonsson.se
*.mpjonsson.se
a.mpjonsson.se
*.mpjonsson.se
*.mpjonsson.se
*.mpjonsson.se
mpjonsson.se
mpjonsson.se
*.mpjonsson.se
*.mpjonsson.se
*.mpjonsson.se
mpjonsson.se
*.mpjonsson.se
*.mpjonsson.se
*.mpjonsson.se
a.mpjonsson.se

Certificate

The complete raw certificate details for a.mpjonsson.se in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 318436262642581662433605230256800672420181
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-08-16 07:32:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-11-14 07:32:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'a.mpjonsson.se'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 805980507513784985023524061893195626016293925553435854720908972337047784168709867328106590912149767075901938084698817022346369366170567264852195574037474301386751715808949964242419496765351823700149769607265075975121037063031170454934972017316043392207489266357744966289731647181813472930391563335301950102904388662743724689163437885750015945182936559325493354474165570453316428614902974368361880980180055317883164501630826582508170534650169734366094149436230660335526719012645952834363384411525029349332970894061542501905686061852241082838724264127570421506405304079037980892644635578946293283549874123053213244063760917953365201641300800843610748297703325845265181695431276497780336655679864270287214275867923128180839713201934078379147961205826391322719724519142151899352747857226532638551537562074436271120217066465938957731109869389717231476497284995534883252995167250216165334488842969598479342755121177810757509309033372922231078050115132955259897310336561309167009418325143247340083885009934050416454700673443654637937333099382398508638866540013468973089935541089669166922871440959113010594457584811336324061327798775627849856685894243283103623127329924818704371466545416369849229913576290239175504987472452954834442526198937
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d526b0417aa8c810e59c972ad7438c48407edabe
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'a.mpjonsson.se'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.a.mpjonsson.se'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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