opic.co
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:1d:fd:5a:f4:62:bc:26:7e:ac:1d:5e:0f:eb:66:5e:76:4c was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=opic.co
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:1d:fd:5a:f4:62:bc:26:7e:ac:1d:5e:0f:eb:66:5e:76:4cSerial Number (int): 271541813382369340167266972778797299824204
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 8d:ee:b6:69:a8:c4:89:71:b5:fd:e4:d8:a2:07:22:8a:80:8b:7c:5b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): c4:eb:e4:c9:90:ec:d5:f5:c1:5c:67:e9:98:31:b1:c2:fb:95:3c:4a
Fingerprint (sha256): fa:c4:fe:fc:73:9a:c6:88:90:50:d0:27:93:2f:35:db:66:22:c8:50:67:23:0f:af:16:c5:ad:b3:17:80:8e:1c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate opic.co
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for opic.co
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
opic.co
www.opic.co
www.opic.co
Other certificates including the domain name opic.co
(limited to 100 certificates)
Certificate
The complete raw certificate details for opic.co in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUzCCBTugAwIBAgISAx39WvRivCZ+rB1eD+tmXnZMMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MjExNDA2MjVaFw0x OTEyMjAxNDA2MjVaMBIxEDAOBgNVBAMTB29waWMuY28wggIiMA0GCSqGSIb3DQEB AQUAA4ICDwAwggIKAoICAQDIK89uNDBkovu+2r9bTKx/3ybyzKhFBIWzQBQ3uXJ0 /sMM7eQjQeak9a4nnT57WECMww7Azko55Q5axl/p3XMkwcVT03TUaaoHJoSHqYy5 P943FLpkJXUD9/rQkuiPfRUsg0Z1P5ds6IlPNw5zhq6pS0IB+o9xsEtfBu8yuuRo Z3XcSsXeOwTPoZ6xRpLPxBhU4OUezcr0S0nG5MH6/jVUMB22EoEahecKQwp67rNV //nH3uuZQQCmkanzpJ6+wJF3KSWD4rqZK8kK+5HUB4A0EHsdDI6D1kL7LaUtlf3J wToFoSst+DTI/v+l0n9kZqlqgal0n6LA2UW6LAlqBw0LkQEBdgNsaCB8h9MbEVOK b+9EoxOKPn+w16XKSFrcxKPersJNJy4jz9DYPJAqCodS+/d/n/BntUjty7T5Ki8E +N9IAxNMQ+qN4mIw/e1/ExG9/Zu7muTwGGlvmnU7PtpjqhO23MTGTlcrb6vPdqIw 1SusIgis8sdpF8pbACm8AvXn7l/bkCcVLwWBSz6h12S1pII1YYZZBa1cO5wudB46 MUybLxy87jJR+i2H12HKmNVW0LeqBFaT3upEzCjtibs0JlEK1weta8ppZtlziZQD nnJPGL+dYSwb7seCx+++Nmv4DG6AqYYoEAlTLM3a3cDtwn1+1TCgbC3RkgpN6UlB tQIDAQABo4ICaTCCAmUwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSN7rZpqMSJcbX9 5NiiByKKgIt8WzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggr BgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRz ZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRz ZW5jcnlwdC5vcmcvMB8GA1UdEQQYMBaCB29waWMuY2+CC3d3dy5vcGljLmNvMEwG A1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEW Gmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB 8gDwAHUAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFtVFwdRAAA BAMARjBEAiAdFO5w5NB6CRIa0LkfxJYKFX69oBEsclOFCj8AxyIChQIgKr8v4gTy GGp9/R+NttfVCC9wCPyIa1tzQESO5uXgHMMAdwBj8tvN6DvMLM8LcoQnV2szpI1h d4+9daY4scdoVEvYjQAAAW1UXB01AAAEAwBIMEYCIQDzcfXkbXVny9dhNnTBXJcm U2AqcQOb4OfQfl9xgdbFRgIhALw7M4+Sm73WLhmkAIo4XMr3w1gL1FRPZKmbs8gy 6PMOMA0GCSqGSIb3DQEBCwUAA4IBAQBag5MS4n19eOBcNQCPn53XqKglhpz81VlS Zv+JLBd52GECZkNnvgqmYsrZedMIuM9S22hGLLxaDQElUtyS2BpCefZKC1fYn5e5 2efmbWt8FW0azU3FzplRoEy5ILW+R5Oy296Uj7navSYoLodqVCS14W32Kt3OrYyY 5g4zUmQCQkiew3pbdxeLkrSHjMX9chouO7X6j04XSypTaD8zjlhHBZ095iP44C6f zWEN9u9YbH6O1vh2y2GyA3KS8B0Ye/OMdgfxohtXVJI5trxts9Z4VFMmPCwC/Hxj fQ6iqUgP8u9bkumD+nsJAyBOptWIkyDyNEwmHkwiJUDJwmhXKz+m -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyCvPbjQwZKL7vtq/W0ys f98m8syoRQSFs0AUN7lydP7DDO3kI0HmpPWuJ50+e1hAjMMOwM5KOeUOWsZf6d1z JMHFU9N01GmqByaEh6mMuT/eNxS6ZCV1A/f60JLoj30VLINGdT+XbOiJTzcOc4au qUtCAfqPcbBLXwbvMrrkaGd13ErF3jsEz6GesUaSz8QYVODlHs3K9EtJxuTB+v41 VDAdthKBGoXnCkMKeu6zVf/5x97rmUEAppGp86SevsCRdyklg+K6mSvJCvuR1AeA NBB7HQyOg9ZC+y2lLZX9ycE6BaErLfg0yP7/pdJ/ZGapaoGpdJ+iwNlFuiwJagcN C5EBAXYDbGggfIfTGxFTim/vRKMTij5/sNelykha3MSj3q7CTScuI8/Q2DyQKgqH Uvv3f5/wZ7VI7cu0+SovBPjfSAMTTEPqjeJiMP3tfxMRvf2bu5rk8Bhpb5p1Oz7a Y6oTttzExk5XK2+rz3aiMNUrrCIIrPLHaRfKWwApvAL15+5f25AnFS8FgUs+oddk taSCNWGGWQWtXDucLnQeOjFMmy8cvO4yUfoth9dhypjVVtC3qgRWk97qRMwo7Ym7 NCZRCtcHrWvKaWbZc4mUA55yTxi/nWEsG+7HgsfvvjZr+AxugKmGKBAJUyzN2t3A 7cJ9ftUwoGwt0ZIKTelJQbUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 271541813382369340167266972778797299824204 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-21 14:06:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-20 14:06:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'opic.co' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 816626978955033941063095497452802941379110090196415325605197664247558670555067364609316519950039556115599380545502228020168455120122248709889695369427671356313363534333902359668507382543244131175112041249020291729970305707821890665675938701360394450728424850821418613124935528145407108009304634082258664229307563340339040141037622867232186128450279889437024222146784990236397207945905293837764899216848159095827356370127227928024328031339530676587507691043163494359886993934105145695487834369962191599564920127191737803473591427314587594178797379593776017372518481051881516302759871927514026596680922156729480536909895070233031788658262011503730670769235339942688886723233333611213859756946316015576201671337450382261455031674082973382402021954187365500098978910302279812695301878036638172032112603847465183857010861070968662175638938483683716209596090217985165000305015310763891300904918107738390046802961318483603849377779904479641398897643183557204310732253065282598859980167433485832482369961917135167740259706229010017248644147389739313381186373697193730154253025919529639057664063783374200214284710391249368197140884482312797101040993433053556058466084653940880868029424908419088406284328390713484981798141430006201603056026037 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8deeb669a8c48971b5fde4d8a207228a808b7c5b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'opic.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.opic.co' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016d545c1d44000004030046304402201d14ee70e4d07a09121ad0b91fc4960a157ebda0112c7253850a3f00c722028502202abf2fe204f2186a7dfd1f8db6d7d5082f7008fc886b5b7340448ee6e5e01cc300770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d545c1d350000040300483046022100f371f5e46d7567cbd7613674c15c972653602a71039be0e7d07e5f7181d6c546022100bc3b338f929bbdd62e19a4008a385ccaf7c3580bd4544f64a99bb3c832e8f30e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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