total-store.cz
Issued by R3
About this certificate
This digital certificate with serial number 04:18:db:6f:8a:97:97:de:08:2f:cd:58:67:fb:39:e7:d0:d2 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=total-store.cz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:18:db:6f:8a:97:97:de:08:2f:cd:58:67:fb:39:e7:d0:d2Serial Number (int): 356907600620154682151909425779513007526098
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 02:ea:b7:0d:08:19:5d:f8:e5:7b:69:60:23:f6:2c:ae:51:2c:2a:25
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 32:fc:c5:46:4c:18:e1:61:12:11:31:fd:a3:f8:3c:63:93:4b:7a:ed
Fingerprint (sha256): 0a:53:65:d2:b8:70:76:f6:f2:09:4b:b4:fc:05:df:35:3e:b9:c0:f1:98:d3:81:39:8f:78:3d:18:94:2d:db:9f
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate total-store.cz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for total-store.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.total-store.cz
total-store.cz
total-store.cz
Other certificates including the domain name total-store.cz
(limited to 100 certificates)
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
total-store.cz
total-store.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
www.bsshop.cz
Certificate
The complete raw certificate details for total-store.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE+TCCA+GgAwIBAgISBBjbb4qXl94IL81YZ/s559DSMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA3MTYwMDA4NDlaFw0yMzEwMTQwMDA4NDhaMBkxFzAVBgNVBAMT DnRvdGFsLXN0b3JlLmN6MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA z7nde5Zlps+JAGi/IhInCxtjjfJwGoGhf2paS0myxeEjHd0jW6mPUvpYB7nwGX6A GPPPZOS+XB5PyFyCr/hqkEprruc1q+oCvhbImamcL4nFMMVvoXuvU5vBYvuQDANL nh8gQ355Y5eAXddkIr0epLcm302nasuMtJZYc67Kdx94ULGEoLOWY741XUOK0UPS BVX+jdWjUBGYW4nUlnN5gfB9XltNOkmkKdgjaPMEdHq85zaHWfqz8gbkZAmpnfVA R6bsIB95GzvOMDCTggVYu3EqDl8MKjmwLE5wETMLlBImbKcqZvvxpZoCmDP0/9g/ 0gpmWadpNFoG5ASIw0YWcQIDAQABo4ICIDCCAhwwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBQC6rcNCBld+OV7aWAj9iyuUSwqJTAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzArBgNVHREEJDAighAqLnRvdGFsLXN0b3JlLmN6gg50b3RhbC1zdG9yZS5jejAT BgNVHSAEDDAKMAgGBmeBDAECATCCAQIGCisGAQQB1nkCBAIEgfMEgfAA7gB1AHoy jFTYty22IOo44FIe6YQWcDIThU070ivBOlejUutSAAABiVw+OmsAAAQDAEYwRAIg R8fHKp9rTnh7Sf3/JN3UL/1LSfes53oFceGCkJZsx/YCIGM/SnxLmrnEcThPZ1pu xrdESdFnM00nW33Q/rQBO7F7AHUAtz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0J gSXttJkAAAGJXD46ZwAABAMARjBEAiButxUbipWPsqA4GG/mbqJ0mIMmlU8U9yHt Dg8yb+y6IgIgdsP2cynWO+nnfWmgoE6ZSQPe4haUzDWeWhSV3t6/bKUwDQYJKoZI hvcNAQELBQADggEBAI0vCf8AmPGs3+F0T6mRGz4PMAgB2ym8qYX8iKy/ZWytVmHF aCWN60wuzws014l1wf/ql1lzXmge5fftP+c/R1Y9cs/MhxuOtllerviinuxio/MF 3ORdoRz6doISq4RqB3VsnY8jXF1TgVaZRWKauJ4PnH1m97n5uMqJ5SIFHVoTmifq NZhhae2MSs4w6Y+qM2WHjBzkFJsjnu3/P3NLlLrErz4Ta4TaiTey12EY10OUqEri bcrGlXuhLS5P8tQ7tynUCZNX/7buLr8KVGraEF7OPH2t4wDF+RHjJxWPbjHkZVwK W3pTuEJ6wEa5YN4AP3tlF6OIhVSso7m/QOj7mIc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz7nde5Zlps+JAGi/IhIn CxtjjfJwGoGhf2paS0myxeEjHd0jW6mPUvpYB7nwGX6AGPPPZOS+XB5PyFyCr/hq kEprruc1q+oCvhbImamcL4nFMMVvoXuvU5vBYvuQDANLnh8gQ355Y5eAXddkIr0e pLcm302nasuMtJZYc67Kdx94ULGEoLOWY741XUOK0UPSBVX+jdWjUBGYW4nUlnN5 gfB9XltNOkmkKdgjaPMEdHq85zaHWfqz8gbkZAmpnfVAR6bsIB95GzvOMDCTggVY u3EqDl8MKjmwLE5wETMLlBImbKcqZvvxpZoCmDP0/9g/0gpmWadpNFoG5ASIw0YW cQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 356907600620154682151909425779513007526098 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-16 00:08:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-14 00:08:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'total-store.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26222982657818068537216817624774531695375129599196675926286096191660863074869171807884203067740981606102070120889314491600877414983697137493743982586669416647719870326259817665480257194369102499511672726718191044556773346179695865940983172206836795878959183968221044758928993375658212803379144849413384100074324229800021343116515706467434052331504200653327328163843970860908251388754184860276825325033319035359225992115270469924495035759838079831084284191732370436203303869580410644050023850440321497782670409056279948572272704864226464644923088896434319422826041236448654985149133292273295838155477479416659704157809 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 02eab70d08195df8e57b696023f62cae512c2a25 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.total-store.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'total-store.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb52000001895c3e3a6b0000040300463044022047c7c72a9f6b4e787b49fdff24ddd42ffd4b49f7ace77a0571e18290966cc7f60220633f4a7c4b9ab9c471384f675a6ec6b74449d167334d275b7dd0feb4013bb17b007500b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb499000001895c3e3a67000004030046304402206eb7151b8a958fb2a038186fe66ea274988326954f14f721ed0e0f326fecba22022076c3f67329d63be9e77d69a0a04e994903dee21694cc359e5a1495dedebf6ca5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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