shop1.lonelyplanet.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:82:c6:32:59:08:06:b8:78:ce:b3:b2:49:bf:1a:5e:a3:24 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=shop1.lonelyplanet.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:82:c6:32:59:08:06:b8:78:ce:b3:b2:49:bf:1a:5e:a3:24Serial Number (int): 392949299990541686868970152609752062796580
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 6f:bc:a9:8b:d7:6a:ac:87:88:31:58:fd:46:01:8f:1c:af:b2:a1:2c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 08:e0:c9:7c:d2:52:b5:d8:07:cb:27:74:5b:51:1c:8c:82:d3:4e:fa
Fingerprint (sha256): 01:35:c0:97:d3:02:bc:a0:f2:6b:0c:fb:29:53:c4:95:3e:e6:2d:a9:84:51:c2:af:2a:10:87:15:73:0c:94:be
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate shop1.lonelyplanet.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for shop1.lonelyplanet.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
shop1.lonelyplanet.de
Other certificates including the domain name lonelyplanet.de
(limited to 100 certificates)
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
shop.lonelyplanet.de
shop.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
*.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
*.lonelyplanet.de
*.lonelyplanet.de
*.lonelyplanet.de
shop.lonelyplanet.de
shop1.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
shop.lonelyplanet.de
shop.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
*.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
*.lonelyplanet.de
*.lonelyplanet.de
*.lonelyplanet.de
shop.lonelyplanet.de
shop1.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
Certificate
The complete raw certificate details for shop1.lonelyplanet.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgISBILGMlkIBrh4zrOySb8aXqMkMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAxMDYxNDM4MTRaFw0x OTA0MDYxNDM4MTRaMCAxHjAcBgNVBAMTFXNob3AxLmxvbmVseXBsYW5ldC5kZTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALlM3IAHmHCPyZZVmvQY7wHW JK+KkEYwKsJHvojUYKD1mz/wCgAw8O022jFi8T8bUbhk8Fyy8NlxEQev9YpF8W4i Q0Hu6hE7rCIpm0mRFsJtjTOxBQom8jC9aCYCQGM3tcSCwjBxQMVAv45iuL++KqK7 sxTTqNGK4p+0cMEfBb8ZFVBJ9Ih792UM++88ygecxbKkAE9KcpWa99D/cheRvubP E7HS+Ybc85IJJ3d3c63P71gJ7Up+mFaa5L/WgNkhfksjrNUUMi59AanIFB7vh06S HBslrGESx92i/a27tpBZ3YBEpsFpLgi3oc4bH3RcYmxzQcvtuddwJwLtjmy3E3MC AwEAAaOCAmgwggJkMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUb7ypi9dqrIeIMVj9 RgGPHK+yoSwwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYB BQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2Vu Y3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2Vu Y3J5cHQub3JnLzAgBgNVHREEGTAXghVzaG9wMS5sb25lbHlwbGFuZXQuZGUwTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggECBgorBgEEAdZ5AgQCBIHzBIHw AO4AdQDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWgj0IYCAAAE AwBGMEQCIARXYm/YYRBAF0UrJcf5kk1tGH0+PeZzLTO2ShZ2hJTeAiAatUAwIkjo 1gzRqkzJ6DZ2U3fhgiPW43EOaUK8c8XYiwB1AGPy283oO8wszwtyhCdXazOkjWF3 j711pjixx2hUS9iNAAABaCPQh+wAAAQDAEYwRAIgYUSuYteYxmhGkZKx03IZLTQn UHSsQmCr94pavqYtDi8CIFINq6HJ9joOnH4kuQrFrFotpbTJVLi4wjlONBylxkHB MA0GCSqGSIb3DQEBCwUAA4IBAQBaQ72/bcSu/rpm0N8CT7AY5yPabAdxTjxY7UGf gS9FwEwkTFclzP9GFPGyaLlNG7jxj/MjWKpwmFSSrE0oTpcTxz4YrmmdQUh2ypdx jlyng0JOqlf3ctkHN2L/YOrqdunbgEgHE0DVUkNTUV5KS7ZKF8aYM4hazmP+5y/N wVqUPZm5wBHFpNl25kvD5wQhkZQf4zx5uKnL76vUxla7jsj7T3qXbNY2JUaOm3c3 o6TGX0dzQiH+hA4mWSQ1+VLcHjn/Ad+KnNJo1aHWuVUMgqLTDpHMNPx/t254qIeO PATbQu8noAZUQO03U1JmSNsulpvs69tZBzG9hvRoJ96svlSW -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuUzcgAeYcI/JllWa9Bjv AdYkr4qQRjAqwke+iNRgoPWbP/AKADDw7TbaMWLxPxtRuGTwXLLw2XERB6/1ikXx biJDQe7qETusIimbSZEWwm2NM7EFCibyML1oJgJAYze1xILCMHFAxUC/jmK4v74q oruzFNOo0Yrin7RwwR8FvxkVUEn0iHv3ZQz77zzKB5zFsqQAT0pylZr30P9yF5G+ 5s8TsdL5htzzkgknd3dzrc/vWAntSn6YVprkv9aA2SF+SyOs1RQyLn0BqcgUHu+H TpIcGyWsYRLH3aL9rbu2kFndgESmwWkuCLehzhsfdFxibHNBy+2513AnAu2ObLcT cwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 392949299990541686868970152609752062796580 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-06 14:38:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-06 14:38:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shop1.lonelyplanet.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23391988152459483024884842310913249776149374705734111526731743254047208533796288415587741553959743620278875618267350837634496353996768611613416894050778209483846664154489846779227817729151868034066846141923700314885923613589175304256105511515889707789885749860014494469464520201416847407490652935699561397753640607312287181022544474935010959029271934041002615726290393005210001847403640061102765724995857186210749280939505700719033339824627179778514962363113224563840062537488207629524767657724567081215658737714956455860202725109494550503581193810210086703510205758804461653288716299014630441053846654805806413190003 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6fbca98bd76aac87883158fd46018f1cafb2a12c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop1.lonelyplanet.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016823d08602000004030046304402200457626fd861104017452b25c7f9924d6d187d3e3de6732d33b64a16768494de02201ab540302248e8d60cd1aa4cc9e836765377e18223d6e3710e6942bc73c5d88b00750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016823d087ec000004030046304402206144ae62d798c668469192b1d372192d34275074ac4260abf78a5abea62d0e2f0220520daba1c9f63a0e9c7e24b90ac5ac5a2da5b4c954b8b8c2394e341ca5c641c1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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