www.canamatic.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:94:6e:19:8f:e3:d0:e6:15:08:e7:bb:15:34:6c:1b:ff:df was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.canamatic.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:94:6e:19:8f:e3:d0:e6:15:08:e7:bb:15:34:6c:1b:ff:dfSerial Number (int): 311844995904971453896403466899945626009567
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 2b:db:47:b7:68:70:ed:13:a8:9d:1d:54:c5:78:cc:cf:41:df:88:ac
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 0b:49:0c:4b:2c:7d:a3:0f:43:12:36:81:10:f0:97:57:c4:b7:09:22
Fingerprint (sha256): fd:1f:94:01:0d:98:1e:c0:24:7a:24:d9:23:5c:79:ab:6c:c6:a4:4d:e5:6e:f4:5e:4b:71:39:3b:ab:56:3a:8c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.canamatic.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.canamatic.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.canamatic.com
Other certificates including the domain name canamatic.com
(limited to 100 certificates)
virtuoso.legal
genericviagraonlinetopusa.com
www.canamatic.com
bacoli.org
www.canamatic.com
kikai.bible
occulogic.com
singers.world
www.sans-frontieres.com
comeya.com
www.organiclivestockfeed.com
www.caribbean.fishing
canamatic.com
www.fantastichaircare.com
canamatic.com
canamatic.com
canamatic.com
www.dynayard.com
summit.bible
www.canamatic.com
canamatic.com
www.canamatic.com
genericviagraonlinetopusa.com
www.canamatic.com
bacoli.org
www.canamatic.com
kikai.bible
occulogic.com
singers.world
www.sans-frontieres.com
comeya.com
www.organiclivestockfeed.com
www.caribbean.fishing
canamatic.com
www.fantastichaircare.com
canamatic.com
canamatic.com
canamatic.com
www.dynayard.com
summit.bible
www.canamatic.com
canamatic.com
www.canamatic.com
Certificate
The complete raw certificate details for www.canamatic.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWjCCBUKgAwIBAgISA5RuGY/j0OYVCOe7FTRsG//fMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMTYxMjIxNTJaFw0y MDA1MTYxMjIxNTJaMBwxGjAYBgNVBAMTEXd3dy5jYW5hbWF0aWMuY29tMIICIjAN BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwzzKB4GCICZpohnGRh/uDnCz4m81 pDveHX3UMi8aX30eVQINCHmjMwCg46JYeaq4/1TYIcbGKB9GLi7Tjp5vRi2g4Z7v bzwd1xojTKxM8GX+UUpaDMKSUNt56605L03W9ZbpeQyrv4yg72QN7NTeiM1RKSSP xzDOEO4ThkxzaMT5MERiCHywJ3psIoIevwYXHcvLTeiFC1uuMmJ+a/qOmkHw/uS7 R5zZGGUsUattJKE1X9LZxEmWUJsa1zuVsPWKxn/PjnWVsQ+tfPvSdDcc2cAZXDWy axVq9Sj4IOE5sR7uuZmloxNCJZ3JhSxCe7xpBVaStuFuZNRSwrF8yAknrzKCw3a4 /kbj4/83SHP2ki+UUsRPeCt2tYWdxZohXOXevGQq5wCe6V21oHB0NGvnPiHiIYcP yMQ+pIaIOLHQ1jHDPB0+2uRSvdrZJA2k9SAYUXM8GOyzDnh3qgM9WVwCywqi7KPL wdqDIyH3vfde3m187sIzQGFlSBcyUO45+WhjcUxG20tMmaewSAfP4zRRK/U5Nd38 5jmCyA/DVk2eCvmVzF6OAqIV7ZrSNEc+/NN++ktUb+M6cfUwPFTsY0vQqaWTUZk9 JnTzp+Gz09xwCrKcYlrWAo16PIqMTVxMRDENlqe2U2dXPi9L9GXyvR1B+3slWFzB DMRNPB8GcaO8r/8CAwEAAaOCAmYwggJiMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU K9tHt2hw7ROonR1UxXjMz0HfiKwwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl 7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5p bnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5p bnQteDMubGV0c2VuY3J5cHQub3JnLzAcBgNVHREEFTATghF3d3cuY2FuYW1hdGlj LmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsG AQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkC BAIEgfUEgfIA8AB2AOcS8rA3fhpi+47JDGGE8ep7N8tWHREmW/Pg80vyQVRuAAAB cE4plXQAAAQDAEcwRQIgdwtti08YFHNmKI+g+RoT4DzixL82S4IzY/Vqx3RLwDwC IQD1q56mm9J2CrBRptgy619h9mnJ51b98Uhg0Rrve4A8xAB2AAe3XBvlfWj/8bDG HSMVx7rmV3xXlLdq7rxhOhpp06IcAAABcE4plaUAAAQDAEcwRQIhAILq7IIfvNtz u0Xkmm2jRc7cZunaPfSFJRYBWPIi7l5EAiAkCy3hQqTzOVsxQ5D2yjwKLYZanqvg lcndHIXVZWvviTANBgkqhkiG9w0BAQsFAAOCAQEACwgiAF3AX5iwZM3jZQYJsUho alskcJES1dMMi4jgzqjVjfYVpSKUcImwSVvhQOEtkmY2C6DJhWatD/pc4CpTv64q KxQKEdpeAiSg/luRQJ4YfyZi3GM3BAkv8xZQ796wKhV0mrpT5ok1mBz4HtfYTxvs cN6Xn0sWvrf9SqDbnFR2WGcsHxj6PL/KfXSRrj4JjDp/7qgJgHAejfHsLtNTVwzw uiKnbYpjaaQfbX2ZBF4GCPv4BvMs/Irn/JHmIni6yf5bgZS8Bhn7sX2pYUqnRGM/ tHjMJiZ/05VPE51FBI3xeZOs2nwrqABj/B4Ye8FZ0mCn83TX5aL2pJ/ivwoJTA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwzzKB4GCICZpohnGRh/u DnCz4m81pDveHX3UMi8aX30eVQINCHmjMwCg46JYeaq4/1TYIcbGKB9GLi7Tjp5v Ri2g4Z7vbzwd1xojTKxM8GX+UUpaDMKSUNt56605L03W9ZbpeQyrv4yg72QN7NTe iM1RKSSPxzDOEO4ThkxzaMT5MERiCHywJ3psIoIevwYXHcvLTeiFC1uuMmJ+a/qO mkHw/uS7R5zZGGUsUattJKE1X9LZxEmWUJsa1zuVsPWKxn/PjnWVsQ+tfPvSdDcc 2cAZXDWyaxVq9Sj4IOE5sR7uuZmloxNCJZ3JhSxCe7xpBVaStuFuZNRSwrF8yAkn rzKCw3a4/kbj4/83SHP2ki+UUsRPeCt2tYWdxZohXOXevGQq5wCe6V21oHB0NGvn PiHiIYcPyMQ+pIaIOLHQ1jHDPB0+2uRSvdrZJA2k9SAYUXM8GOyzDnh3qgM9WVwC ywqi7KPLwdqDIyH3vfde3m187sIzQGFlSBcyUO45+WhjcUxG20tMmaewSAfP4zRR K/U5Nd385jmCyA/DVk2eCvmVzF6OAqIV7ZrSNEc+/NN++ktUb+M6cfUwPFTsY0vQ qaWTUZk9JnTzp+Gz09xwCrKcYlrWAo16PIqMTVxMRDENlqe2U2dXPi9L9GXyvR1B +3slWFzBDMRNPB8GcaO8r/8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 311844995904971453896403466899945626009567 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-16 12:21:52 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-16 12:21:52 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.canamatic.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 796499336254056048088401126088197001768223796887714583531106413010243989127995036754956671241892020314764776322382936142320244810548486150883712007018658331447317461910457557846169709077854356763829248286490889915923298304908966188508771537642145617397823202897421597050506540002979975284663087222277187676950551252229169819413327640167399849445707814860428740627045673817485732347660261925976244982981262398065477691681519252837768092059174472788119318644000269994604951488231370628287037974572106497136030067536472596425958259072901477599275323733109539778630037735924318454369935210636222266098702840665892366056938248020404166154445342815621321344009238916891633958897448158184687274498347370967744280824086774686418394614555685021878031754259531155828376887668551198825638091849157664992915352490128396244750087846443345030175624585521806002080992243225444907062792305856009356406514437828413931890906019863719968167285499105724103508924778626226451226249654340295378785079465224552530388988842149875887120083478717867133688801105857920540123510319631703141556557306506693211326274596154577267333304138511620933387802245714751771319227703500169260870417594582324106859578363809360064593941878782907327134119116397087541771939839 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2bdb47b76870ed13a89d1d54c578cccf41df88ac . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.canamatic.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e000001704e29957400000403004730450220770b6d8b4f18147366288fa0f91a13e03ce2c4bf364b823363f56ac7744bc03c022100f5ab9ea69bd2760ab051a6d832eb5f61f669c9e756fdf14860d11aef7b803cc400760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c000001704e2995a5000004030047304502210082eaec821fbcdb73bb45e49a6da345cedc66e9da3df48525160158f222ee5e440220240b2de142a4f3395b314390f6ca3c0a2d865a9eabe095c9dd1c85d5656bef89 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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