www.gumst.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:d0:4e:99:f5:ee:8f:4f:29:5f:53:f1:cd:88:b5:a1:df:85 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.gumst.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d0:4e:99:f5:ee:8f:4f:29:5f:53:f1:cd:88:b5:a1:df:85Serial Number (int): 332220069308017527236941162411337925648261
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 05:2a:ae:d5:71:ea:06:43:36:11:31:a3:34:4e:08:9a:63:68:d2:98
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 70:44:48:6a:c0:f7:ce:7b:f1:3f:a3:5a:f9:c7:bf:47:24:6b:bb:24
Fingerprint (sha256): 24:ae:40:f1:37:26:c9:49:58:98:fb:99:c2:f5:3e:66:08:92:ee:81:98:f4:10:43:43:b9:9e:9b:1e:2b:67:91
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.gumst.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.gumst.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.gumst.com
Other certificates including the domain name gumst.com
(limited to 100 certificates)
gumst.com
www.gumst.com
gumst.com
gumst.com
gumst.com
www.gumst.com
www.gumst.com
www.gumst.com
gumst.com
www.gumst.com
gumst.com
gumst.com
gumst.com
www.gumst.com
gumst.com
gumst.com
www.gumst.com
www.gumst.com
www.gumst.com
www.gumst.com
gumst.com
gumst.com
www.gumst.com
gumst.com
gumst.com
www.gumst.com
gumst.com
gumst.com
www.gumst.com
gumst.com
www.gumst.com
gumst.com
www.gumst.com
www.gumst.com
gumst.com
gumst.com
www.gumst.com
www.gumst.com
www.gumst.com
gumst.com
gumst.com
gumst.com
www.gumst.com
www.gumst.com
www.gumst.com
gumst.com
www.gumst.com
gumst.com
gumst.com
gumst.com
www.gumst.com
gumst.com
gumst.com
www.gumst.com
www.gumst.com
www.gumst.com
www.gumst.com
gumst.com
gumst.com
www.gumst.com
gumst.com
gumst.com
www.gumst.com
gumst.com
gumst.com
www.gumst.com
gumst.com
www.gumst.com
gumst.com
www.gumst.com
www.gumst.com
gumst.com
gumst.com
www.gumst.com
www.gumst.com
Certificate
The complete raw certificate details for www.gumst.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgISA9BOmfXuj08pX1PxzYi1od+FMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODExMzAxOTQyMTNaFw0x OTAyMjgxOTQyMTNaMBgxFjAUBgNVBAMTDXd3dy5ndW1zdC5jb20wggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQDROce87Jps3K4JXdT3OBTZibQhZfZET5OA y/Gqk0H14/mhO1EjXzaJ/5rSWsc905Csa/1YVN0feGurT1fncO6TK/qOjef5NHUo 24+Jb+I8Fw5a64nzMgkxnN/ktphzvdZ70ROIfqCbDBRJAy3qdOontbMstBJcoi/O tr2yT3nocCKK0uWqjjQGWi/58HvVhEpeLINQKoNkIeow6ms8tzS65QDYi8kSG32I DYQ0mMlsItOoHtSL/VBklICwRZU1BnyZEDkJHa7Z59h+AIAiyu9dL8fEMgAOwtm/ 6FKypphlEjRPRJRKnF5azkgXVoBgccqawW9oTbNPwCrc4Sw/4ZtLAgMBAAGjggJh MIICXTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFAUqrtVx6gZDNhExozROCJpjaNKY MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMw YTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9y ZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9y Zy8wGAYDVR0RBBEwD4INd3d3Lmd1bXN0LmNvbTBMBgNVHSAERTBDMAgGBmeBDAEC ATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNl bmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AHR+2oMxrTMQkSGc ziVPQnDCv/1eQiAIxjc1eeYQe8xWAAABZ2ZbhrkAAAQDAEYwRAIgVyxl+OiJT/Ot wCLw+vqEa9KrnrB9WTpqQGLqrk6qsVcCIAiJB/wsNwsWDsHBq2VIUdbhJp5JW4Cg sF6tNwyM1tpSAHYAY/Lbzeg7zCzPC3KEJ1drM6SNYXePvXWmOLHHaFRL2I0AAAFn ZluGnwAABAMARzBFAiEAwFgqD/l2Iny+ztmesCJbq+7vXTIRvCdu9n9mvr2+dpYC IAvGY5J7CCRCVq/159mG/FFuTdyq1Fi9CQkZYBlRtYN2MA0GCSqGSIb3DQEBCwUA A4IBAQAhATJv0eeHQ/V4dkz7NodwGKN3zrQNKfrWC4HT9Hwpm/dr40Q54oKBTdJc ZRbX51+r4347J+lwzjH8JB1ZK5JqHAK9r/T+3pk0f4Vp0wykDt54TkokLypUug7F BBeuMcQRl9ehfjs9tVWBqx0ED4nDwXmm1UqKT58ne2mUqJswxHX+Z4FQSdkkDMbz 3o6x2ccxsnJo0QBYzS74XecFOO7s2rPclxZw5U1mtivPvCb77GuE61en6gftmS4p GeYc0dsLJggW6kHVBaSuxnD6qgWzBXlTIvsJ6y+W6MtTskU1qI6RuDmkO8iJBT7o xOw0LqTq3e4LsDUNaPvzP9QLR4uA -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0TnHvOyabNyuCV3U9zgU 2Ym0IWX2RE+TgMvxqpNB9eP5oTtRI182if+a0lrHPdOQrGv9WFTdH3hrq09X53Du kyv6jo3n+TR1KNuPiW/iPBcOWuuJ8zIJMZzf5LaYc73We9ETiH6gmwwUSQMt6nTq J7WzLLQSXKIvzra9sk956HAiitLlqo40Blov+fB71YRKXiyDUCqDZCHqMOprPLc0 uuUA2IvJEht9iA2ENJjJbCLTqB7Ui/1QZJSAsEWVNQZ8mRA5CR2u2efYfgCAIsrv XS/HxDIADsLZv+hSsqaYZRI0T0SUSpxeWs5IF1aAYHHKmsFvaE2zT8Aq3OEsP+Gb SwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 332220069308017527236941162411337925648261 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-30 19:42:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-28 19:42:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.gumst.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26412298229525570346456162423693942084478318793361895988875226172834143403112662993844357199107247933792016554798572385840899479663032827355086384039995390189042815334008332561251632406289619506344822635283929556973784395824992378791856290143722337655063287107131412707230217195244177612108848896330051757805723227380127695313128630255232974004442727885970184711762564107831109835541607211889868563370469718934683614983561129118615817003959762977599125416795603271906453853149100692445377175185078874895462495251607820117986696882834116094792481699640507644881458908881079206886374347363215159702447628538080743496523 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 052aaed571ea0643361131a3344e089a6368d298 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gumst.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000167665b86b900000403004630440220572c65f8e8894ff3adc022f0fafa846bd2ab9eb07d593a6a4062eaae4eaab1570220088907fc2c370b160ec1c1ab654851d6e1269e495b80a0b05ead370c8cd6da5200760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000167665b869f0000040300473045022100c0582a0ff976227cbeced99eb0225babeeef5d3211bc276ef67f66bebdbe769602200bc663927b08244256aff5e7d986fc516e4ddcaad458bd090919601951b58376 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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