www.abbigail.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:6e:dd:5a:b7:40:09:fe:06:b8:07:53:94:9f:3b:6f:2c:fe was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.abbigail.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:6e:dd:5a:b7:40:09:fe:06:b8:07:53:94:9f:3b:6f:2c:feSerial Number (int): 386174434498884604443009221078152813423870
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 00:bd:8b:3f:70:37:03:fc:6c:98:94:b6:98:f7:47:8f:9f:e3:6a:91
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): d6:ac:c1:99:d6:ef:ca:3e:30:a1:30:5f:73:ba:58:2c:0f:1c:48:d3
Fingerprint (sha256): ff:36:72:85:05:bf:dc:ab:64:20:d1:91:9a:bb:26:1b:8c:7b:66:20:3a:eb:ac:1a:43:17:8f:50:df:0a:79:89
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.abbigail.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.abbigail.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.abbigail.org
Other certificates including the domain name abbigail.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.abbigail.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWDCCBUCgAwIBAgISBG7dWrdACf4GuAdTlJ87byz+MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMjMxODMzNDJaFw0y MDAzMjIxODMzNDJaMBsxGTAXBgNVBAMTEHd3dy5hYmJpZ2FpbC5vcmcwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC+S50VKV6QxKmuEFvDDSHoQYKlMgnX T/gdA6OgkjxDDN+LAg6u82xJywzhoRyNiYeAzvEZAOr0pLEE3OEPf3P4WNeU9pZo n/7mAbYXn3SJyC7pVV+G0vXwCXpCZxYHZG+WjliCHbuENOQcyPgs+ClJPi037AYs jDJTZV1/d0VF31lXPUO8zOBFzkVrjD+sSzQkfrBQfpp3PapJPEYFkAn4qdwVQ3UD MO9662hVd2xxR7J4L/rfszcXLFigU/wBPSdUDu9RXXTXbWSIUhe87bGk9M7LUjEQ 2YOqrk844n3xA/kRQ1dQiPAPwApRGVNmLL4XjJI3b959Uk7UfSORnd7V+1VZPlBr Nus/0YFVakv6vMAnaprjXb03YZGwhop9ZQiKBztXHHmQ19nHvwClYbixUoJiKGzC 9rCjFI/lvAZUmbTsNxVqG+dheG2JejdSeth//0EW+bIXIGMFyOStvvWOIuI+aT2F NR1/qpEt1YBXjct2Om+zpw8zPGyDCvfPIUQgrUmyf3upzF33PKnsuPPHZASw2VaU Osz9wGPHJBK2P4dOw1Mc8Y/WvKIuKPP/muaF6p9c1LlvEaatsgjNiNE2OEW1TP+u ZZDQZQ7I23lLi+qvptRNcq61MIIL+V1+S6VyAfssgjPoH4yCla+lmvPppndvAUkq 24wv73jpzMEoRQIDAQABo4ICZTCCAmEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQA vYs/cDcD/GyYlLaY90ePn+NqkTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHd3dy5hYmJpZ2FpbC5v cmcwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQC BIH1BIHyAPAAdgBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAW80 QD2DAAAEAwBHMEUCIHeg3xt0krd1gISxqfAwI5bYVxaNNLmF/Fnbp/q+1o0MAiEA 1dGEy0tnW2gpvRoSiAddfu6ERejaax7Ytmop0KpTgeYAdgCyHgXMi6LNiiBOh2b5 K7mKJSBna9r6cOeySVMt74uQXgAAAW80QD1yAAAEAwBHMEUCIQCDs2Jn4NHHkYIb xHBjyMajnV1Ro5yteSj6vooajrl7JgIgVm9A1tbYt0KPONDzvESIAoNblM+3uOi+ Ci3HFmKFtukwDQYJKoZIhvcNAQELBQADggEBAJH5SGwYiho3011tg04jUPLI9WoZ NKRDRY7Ih5AzmHQrwhrpnf5BCtbnTajasRk0mThEumPHkMn1V1mq5VVeyu2gnP0X EtMLBMNJWMP7E5M976wrMl0gckxlJrj/dwHcxJtldfuPSSRDSYUsjXEGLvJBojqm FrA9yFBhWmPqVpihxdVyX8rdJv0gNu9ZW30l2BToV42mUfTc8QVw85BfiMYsNadr CgyQf7ZXpz2tKVkKRPmsvBQ0YyqlFypPGQOClhdZpRrwDmPifcxeVhgmxYuNfefx 5pPPcyVxQSJwlPcWwJz79lc6doSUy2Jx8SA3gAWgzxujsaCZHU6Rxz2PRt8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvkudFSlekMSprhBbww0h 6EGCpTIJ10/4HQOjoJI8QwzfiwIOrvNsScsM4aEcjYmHgM7xGQDq9KSxBNzhD39z +FjXlPaWaJ/+5gG2F590icgu6VVfhtL18Al6QmcWB2Rvlo5Ygh27hDTkHMj4LPgp ST4tN+wGLIwyU2Vdf3dFRd9ZVz1DvMzgRc5Fa4w/rEs0JH6wUH6adz2qSTxGBZAJ +KncFUN1AzDveutoVXdscUeyeC/637M3FyxYoFP8AT0nVA7vUV10121kiFIXvO2x pPTOy1IxENmDqq5POOJ98QP5EUNXUIjwD8AKURlTZiy+F4ySN2/efVJO1H0jkZ3e 1ftVWT5QazbrP9GBVWpL+rzAJ2qa4129N2GRsIaKfWUIigc7Vxx5kNfZx78ApWG4 sVKCYihswvawoxSP5bwGVJm07DcVahvnYXhtiXo3UnrYf/9BFvmyFyBjBcjkrb71 jiLiPmk9hTUdf6qRLdWAV43Ldjpvs6cPMzxsgwr3zyFEIK1Jsn97qcxd9zyp7Ljz x2QEsNlWlDrM/cBjxyQStj+HTsNTHPGP1ryiLijz/5rmheqfXNS5bxGmrbIIzYjR NjhFtUz/rmWQ0GUOyNt5S4vqr6bUTXKutTCCC/ldfkulcgH7LIIz6B+MgpWvpZrz 6aZ3bwFJKtuML+946czBKEUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 386174434498884604443009221078152813423870 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-23 18:33:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-22 18:33:42 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.abbigail.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 776337359609893320120342738863615579479198274411668522879677498898065919872456652307992077681222155586876977583620115398453993985563301759297245257919650572145783583479740487553833130873724587588604941762653142074223170260892076290847376740998680426053650417602314882661444830725286849718965094666585060095961009487985544851621309445321596755223831218590536662134025231985008751919219824460228342062800796502287594447007136871897808369711331406850066796587476584376687902289570663386589199584917830396569153375457399577696628104812915700354295947041074465817576113333596878027130587027650145240600566530495569974255752419252856330557547071303773660730119553021517937037894325594381539455033568179464513150731454582585221390334080516004783848321904337777024455711881613062063773421195987650067147876060732018119681389287628558178406628850514502737160727905329990284708530435886109471193849803031791922231944077559214832488365714153943389050422538658372707899969552935915307838004717427291563902170351800900222122448824735706230966336176130949810013668684325225759228083974916287755599593167682341190485044847183200474054238723150519047332253386883546790959182150561717393517546740534150162764514757434769505911453581397547499191871557 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 00bd8b3f703703fc6c9894b698f7478f9fe36a91 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.abbigail.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f34403d830000040300473045022077a0df1b7492b7758084b1a9f0302396d857168d34b985fc59dba7fabed68d0c022100d5d184cb4b675b6829bd1a1288075d7eee8445e8da6b1ed8b66a29d0aa5381e6007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f34403d72000004030047304502210083b36267e0d1c791821bc47063c8c6a39d5d51a39cad7928fabe8a1a8eb97b260220566f40d6d6d8b7428f38d0f3bc448802835b94cfb7b8e8be0a2dc7166285b6e9 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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