DV SSL/TLS Certificate for *.myshopify.com

Certificate is witin its validity period

Issued by CLOUDFLARE, INC. (Cloudflare TLS Issuing ECC CA 1)

About the *.myshopify.com DV SSL/TLS Certificate

This certificate with serial number 72:32:c2:33:6e:99:1d:ca:d1:4c:2b:d0:a0:3a:7e:68 for *.myshopify.com was issued on by CLOUDFLARE, INC..

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for *.myshopify.com provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

CLOUDFLARE, INC.

Organization: CLOUDFLARE, INC.
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 72:32:c2:33:6e:99:1d:ca:d1:4c:2b:d0:a0:3a:7e:68
Serial Number (int): 151795545224735004964704772085606153832
Serial Number Length: 127 bits, 16 octets

Subject Key Identifier:
Authority Key Identifier: 9c:c4:09:72:47:18:17:7b:a7:1a:89:b3:92:35:d5:e1:03:8c:fe:92

Fingerprint (SHA-1): b1:c8:78:e7:c2:bf:3f:f3:98:10:7b:ec:e0:16:66:f4:d7:33:9e:98
Fingerprint (SHA-256): 4e:50:23:68:1b:19:46:ec:ee:32:81:a4:d3:1c:b7:fd:f2:ec:01:80:cd:82:1b:cb:41:d9:d8:5e:72:0a:c2:74

Issuing Certificate URL: http://i.cf-b.ssl.com/Cloudflare-TLS-I-E1.cer

Revocation Information

OCSP Server: http://o.cf-b.ssl.com
CRL Distribution Point: http://c.cf-b.ssl.com/Cloudflare-TLS-I-E1.crl

Check the revocation status for certificate *.myshopify.com
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for *.myshopify.com

Public Key Algorithm
ECDSA
Key Size
256
Signature Algorithm
ECDSA with SHA256
Key Usage
Digital Signature
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for *.myshopify.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIEYDCCBAagAwIBAgIQcjLCM26ZHcrRTCvQoDp+aDAKBggqhkjOPQQDAjBSMQsw
CQYDVQQGEwJVUzEZMBcGA1UECgwQQ0xPVURGTEFSRSwgSU5DLjEoMCYGA1UEAwwf
Q2xvdWRmbGFyZSBUTFMgSXNzdWluZyBFQ0MgQ0EgMTAeFw0yNDExMTUwMDE4MzVa
Fw0yNTExMTUwMDIyMjNaMBoxGDAWBgNVBAMMDyoubXlzaG9waWZ5LmNvbTBZMBMG
ByqGSM49AgEGCCqGSM49AwEHA0IABN5x4iZCSMEtKxXbgOvsV0kdTC410XZ1j5KG
J7Wv4IKCZ4B5+Q1TwLL/QrXSCjDRKQnJbil3GKyjmkrYsVVOO0mjggL0MIIC8DAM
BgNVHRMBAf8EAjAAMB8GA1UdIwQYMBaAFJzECXJHGBd7pxqJs5I11eEDjP6SMGwG
CCsGAQUFBwEBBGAwXjA5BggrBgEFBQcwAoYtaHR0cDovL2kuY2YtYi5zc2wuY29t
L0Nsb3VkZmxhcmUtVExTLUktRTEuY2VyMCEGCCsGAQUFBzABhhVodHRwOi8vby5j
Zi1iLnNzbC5jb20wKQYDVR0RBCIwIIINbXlzaG9waWZ5LmNvbYIPKi5teXNob3Bp
ZnkuY29tMCMGA1UdIAQcMBowCAYGZ4EMAQIBMA4GDCsGAQQBgqkwAQMBATAdBgNV
HSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwPgYDVR0fBDcwNTAzoDGgL4YtaHR0
cDovL2MuY2YtYi5zc2wuY29tL0Nsb3VkZmxhcmUtVExTLUktRTEuY3JsMA4GA1Ud
DwEB/wQEAwIHgDAPBgkrBgEEAYLaSywEAgUAMIIBfwYKKwYBBAHWeQIEAgSCAW8E
ggFrAWkAdwAS8U40vVNyTIQGGcOPP3oT+Oe1YoeInG0wBYTr5YYmOgAAAZMtOMmH
AAAEAwBIMEYCIQDk37CvVlWLDAta6f2MMjJJ6NKO55JJOHT2fxxCCWByXQIhAPan
EgIVWP5oLCqGp5jQ70o62Zk1rsRlWxVnipqCd0YUAHYADeHyMCvTDcFAYhIJ6lUu
/Ed0fLHX6TDvDkIetH5OqjQAAAGTLTjJfwAABAMARzBFAiAMjYHH3s0Vw90bCPEl
MGchzWdNX+2VQbXA2hQ2eHSHoAIhAPdfu+HvycCiCbLbY4xzIYbrhIjFRvJFF50p
ZwFlNJwUAHYAzPsPaoVxCWX+lZtTzumyfCLphVwNl422qX5UwP5MDbAAAAGTLTjJ
ugAABAMARzBFAiEAuwBWsfDWSlFiX/EBGd6WZiSi9HwBErkczzeksfXVYaACIAvx
8/VXdDfpNl95gmydFnLiDumvmOFKPDQ2c8V0mgjWMAoGCCqGSM49BAMCA0gAMEUC
IBI6hsAH5VX/10UwtnPy6Bxm6kCpnLblreJpmnhtQDyVAiEA5perhUziq9CLREbQ
5mdAg4PdjFvVt2WvQEhtzd8Msgc=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE3nHiJkJIwS0rFduA6+xXSR1MLjXR
dnWPkoYnta/ggoJngHn5DVPAsv9CtdIKMNEpCcluKXcYrKOaStixVU47SQ==
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 151795545224735004964704772085606153832
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.4.3.2
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'CLOUDFLARE, INC.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Cloudflare TLS Issuing ECC CA 1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-15 00:18:35 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-11-15 00:22:23 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.myshopify.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.2.1
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.3.1.7
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (520 bits)
				0004de71e2264248c12d2b15db80ebec57491d4c2e35d176758f928627b5afe08282678079f90d53c0b2ff42b5d20a30d12909c96e297718aca39a4ad8b1554e3b49
 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9cc409724718177ba71a89b39235d5e1038cfe92
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://i.cf-b.ssl.com/Cloudflare-TLS-I-E1.cer'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://o.cf-b.ssl.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myshopify.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.myshopify.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.38064.1.3.1.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://c.cf-b.ssl.com/Cloudflare-TLS-I-E1.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1 bits)
							0780
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44363.44
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.4.3.2
 . . . . [c:0|t:3|false] BIT STRING (568 bits)
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 8245038415407700683565678635580723921933611016873624701169864929510818856085
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 104299932873327994546830912062862390126139472791175368508406784355409500877319