candlecharting.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:96:29:a3:f7:95:ee:51:47:3b:a2:4e:37:d6:ac:1a:d1:1a was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=candlecharting.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:96:29:a3:f7:95:ee:51:47:3b:a2:4e:37:d6:ac:1a:d1:1a
Serial Number (int): 312434562547270556195375319641236291899674
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: ac:5e:06:8c:ae:cf:67:c1:30:f2:8f:a1:c3:0d:03:cb:23:ca:f6:08
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): ab:f1:6d:5e:a0:f3:f9:57:98:2b:d2:40:38:6a:4b:10:69:0a:e6:f1
Fingerprint (sha256): 1c:32:d4:39:fd:de:90:04:4a:86:5a:1b:3e:05:2d:65:cf:d4:ed:a6:fa:26:1b:17:45:0e:5b:96:10:22:bf:07

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate candlecharting.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for candlecharting.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

candlecharting.com

Other certificates including the domain name candlecharting.com

(limited to 100 certificates)
selfridingcab.com
candlecharting.com
stflanagan.ie
candlecharting.com
www.hmolaw.com
www.candlecharting.com
aerofare.com
candlecharting.com
gamersground.ca
sunraj.in.canibuild.house
candlecharting.com
www.candlecharting.com
www.candlecharting.com
h1920.com
allanblock.ca
selfridingcab.com
varnd.com
miragesubsea.org
candlecharting.com
candlecharting.com
strandhotel.co.za

Certificate

The complete raw certificate details for candlecharting.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqRdB3WLisCQIYbCyBlR+
sFvaqF2aweHFUlxs3mKC81L06enpCJbdBrSEZnXYv2pC5yMWmmMBI3lBFXbAwLE/
96IOU0eB/Drpah/Jt8WNbpbR921vAd6ZWU++3LoJyl3vc+jPrYlcdZcsqP0fYjOl
XeDvbpkkAD9c81ngbLhEVZngq/KJeO6Ys8sLQbrPdbRGaf34aiSw56UPrj71D+UI
wOvYCeRmq0JGsBzijfH/mTqZ8gWCxHZAU8ExJ9J0IzJqMGZblDihPEagm1tzhG3L
oBdoFQRoMOTFPIFxBbzsdtceETXM9ju93/9BhMTmwHYWvA8yTiZv9WRfxt4bdoe1
dyjo7b+uENzR5nqxWvCQYXtyQJ1ZNew22uPfgV/JXqzKS6M/rVNNNikbdWg4G36i
DBsqA20ZU5LK94J1xdbvECoLTcSutkYAVpFtjX+1B6gL6TSF1t9sur4eKijPOnz4
otmZu3PavQr0d2qE9KbS8dqp4rzoO0yxOLCUpIM5YhiX88EuCZ0yxqAfwPcOcW/8
54u4A9UgpgGxUmlVP1h1LJO9+t3eEBEfi+TeUNpHM0eYyPtbDHQMtlWgXHZFT/Dk
QUa10os2mNiYXl5CeFSL89nBb7AJsQUK6Xd/8gqx4WSj9ktaOfVbpM7FNwjptzGs
Z7RKeysoYvPXx+2zsF2YF7cCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 312434562547270556195375319641236291899674
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-08 00:08:17 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-07 00:08:17 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'candlecharting.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 689830478128531634507914318012209862602734060425638864146847626002358927558768819684254783584050003538729367621895241379995062019817808026380695519964979943920602742069181417796648968660799905063057684912311259871953629906384630812483659575231092766207635531551478203824809162543728797015564931677085578085824713409940064694622753618157530408088814911689684180796917485854014955446313846516196342273695939995531864192735694914930797736032226115633069743400308223214309608881371777149777811453462269496389754257815263567116793133550320903887300577905388751892558539545939227715934332050217838316085833528800175389893156357343013428696151310776247890227637441539294660765847430665117513590228543802793518473661611784535719032507394486079533428007832039056947581156585992600795558324532052045090230427502282845679858014155256894896430885206306736604374723693850214839508368499431196746683456426069705632815060233261933198637620009174816395424007846040673854740302609699217672170216958637709840593117629250138880988085960727465366902593929509061687812320855839597807534667591890362372756491964706465671048133862880798478262888448760968530272815766370195000951817755795384778817719262424303306304068465159358861271455610443637186188810167
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ac5e068caecf67c130f28fa1c30d03cb23caf608
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'candlecharting.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016f82b1f19800000403004730450221008e8d5adde43c677c7b9fe7b2f49e984fc2bc5b90c74da6a2ef7d2cb671b7cc1302200b1080feaf05cfb1f21db77b89be43b7496398aeef11cca3d98c2de11b49a4460076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016f82b1f243000004030047304502205ac7131ac73f81cebaf5923920573b3f6a47c74164896cabbd1f00e8afa74a87022100aa4a34b055ecf9aeedf97a157e9936d3b07ec9b3e1ad4c384901f2e788e1bcd7
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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