benefitsofwine.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:57:58:ec:8c:62:92:92:52:dc:9f:60:01:c4:97:2d:c8:fe was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=benefitsofwine.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:57:58:ec:8c:62:92:92:52:dc:9f:60:01:c4:97:2d:c8:feSerial Number (int): 291059624010437139220860321597796664592638
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 77:0c:34:0c:18:b7:28:c2:34:52:ba:d2:a8:aa:fc:77:40:ec:87:fa
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 90:34:f6:9a:d5:96:5d:7d:21:50:d2:70:64:f4:5a:20:00:92:b6:b4
Fingerprint (sha256): 28:42:55:4c:b6:f5:8b:39:fe:1d:0e:f9:03:6a:8f:fe:30:b4:18:a4:f0:5f:1c:90:7e:b0:70:3c:0f:5b:e6:cd
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate benefitsofwine.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for benefitsofwine.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
benefitsofwine.com
Other certificates including the domain name benefitsofwine.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for benefitsofwine.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXTCCBUWgAwIBAgISA1dY7IxikpJS3J9gAcSXLcj+MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMjIwNDIzNDJaFw0y MDA2MjAwNDIzNDJaMB0xGzAZBgNVBAMTEmJlbmVmaXRzb2Z3aW5lLmNvbTCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAK8AY/8+sRHL6A7IYH8s9hUVOLbQ nXU4miNv/I6CXvcACOTpBpFVXTIp1z31aqutYAR6pSvusbxgMthTa2GofmMSVwWm cSQJX9zM44mbsvRbxzEh3fYLontHEP75SM9zCxgij3JLY703UxCoYf3FX+7wFSUm iIEX4gwk3socCobY3nT4yJylUtGpbuqTCgZODpeTVHJUC2AJ1WcmfZGgFDi2eadU pqiBP57i0XAk5HDKgHMMjPp0jB/3Rtt8QloVYslqosZIdgwcTjLMn+YWLTsLnd0o S+s0fyRKEjRPInKzACWy8ktGdGRuP3BarzBvKoU7nSB0ylGFNkFXp57//HL933nd QgdISgM5pMmZCgEFOZsUx8sgnXBXEluMv0ua8Tu6KpvfKvtp+KrYl8vewNQCFEZ6 lnb8f4mxkV0+4LBLGA+zDlj0GeUTY6qmRq0z2HqX9vN74i7t9d1fNLiHxdSIidwb 7vze+mPxVWtZZ+jUYkqpEX1loSN7s0Mq8d3OVRa3kpaTJkvi5/I4p1D9B7ed9bPc 55dHyeZ0wKmLvIsi8WDtUD0B+XuXfhWrUGg22UcrF9gofmSxFme76n690mMZINHv xh6KyA6ozoRpO8bpXeVDV0AUfwpCUwFVGI5CmFKmk7yur3TUjT1nhw5IlISmzTNy Uf59UouW8H2pR/UBAgMBAAGjggJoMIICZDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FHcMNAwYtyjCNFK60qiq/HdA7If6MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISYmVuZWZpdHNvZndp bmUuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHW eQIEAgSB9gSB8wDxAHcA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMA AAFxALJg1AAABAMASDBGAiEA+rTnsm7titU5IBSrU1SriyydU+PDo4Rr0JLWgRGX eEwCIQCfAHtrUgYwQJAi7SRV4GaEycTmAPCwZcJCygMzvmpr5AB2ALIeBcyLos2K IE6HZvkruYolIGdr2vpw57JJUy3vi5BeAAABcQCyYOsAAAQDAEcwRQIhAIQPy0yC zCG55F8VNfP7gJrF9miLBrZHyVR1a3t07Cd5AiAe0ot2QWDT/8IQBmrIhZUUPxbX aKOpTNLp3/3tpsZpdTANBgkqhkiG9w0BAQsFAAOCAQEABXrz21pf7WmuMC3VQCPo U7zu96zPkgMoYmPLz46/kh0TYBvD5lm3ouFgW7p+0tVlXrEYEJWS46tetvJzPrrW 0JwSoS2cTbDeiIBu1LpsHPcbinj25i2aQ556/+LqL9TXPwVXg3bM364YIxOz0KLF 8XzIib475lNoBzXmXsuKjSbcRq9nlkbB2CNSEK9ApBW7XUBmqBe5qdi1jUZZxfpM 9is0li2GwbaqYSibPVyjcbc9xMzKzRFuzMI2ow5eicseEP7dzGJmH2mJwnVVtMH7 t6yAaVx6fU4OAa6XRy3TY0EcpSqqJDEMlFe+oVWJb8NBAEZDpvUJ66OHoFGYUoCJ 2g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArwBj/z6xEcvoDshgfyz2 FRU4ttCddTiaI2/8joJe9wAI5OkGkVVdMinXPfVqq61gBHqlK+6xvGAy2FNrYah+ YxJXBaZxJAlf3MzjiZuy9FvHMSHd9guie0cQ/vlIz3MLGCKPcktjvTdTEKhh/cVf 7vAVJSaIgRfiDCTeyhwKhtjedPjInKVS0alu6pMKBk4Ol5NUclQLYAnVZyZ9kaAU OLZ5p1SmqIE/nuLRcCTkcMqAcwyM+nSMH/dG23xCWhViyWqixkh2DBxOMsyf5hYt Owud3ShL6zR/JEoSNE8icrMAJbLyS0Z0ZG4/cFqvMG8qhTudIHTKUYU2QVennv/8 cv3fed1CB0hKAzmkyZkKAQU5mxTHyyCdcFcSW4y/S5rxO7oqm98q+2n4qtiXy97A 1AIURnqWdvx/ibGRXT7gsEsYD7MOWPQZ5RNjqqZGrTPYepf283viLu313V80uIfF 1IiJ3Bvu/N76Y/FVa1ln6NRiSqkRfWWhI3uzQyrx3c5VFreSlpMmS+Ln8jinUP0H t531s9znl0fJ5nTAqYu8iyLxYO1QPQH5e5d+FatQaDbZRysX2Ch+ZLEWZ7vqfr3S Yxkg0e/GHorIDqjOhGk7xuld5UNXQBR/CkJTAVUYjkKYUqaTvK6vdNSNPWeHDkiU hKbNM3JR/n1Si5bwfalH9QECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 291059624010437139220860321597796664592638 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-22 04:23:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-20 04:23:42 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'benefitsofwine.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 713943936762733588636408503638715026518864832804279662997829584467628413703228905838232634420156753089365967836847238102772111876068611819647517575192254722196090114867307211090975726992795768097664784649011224430144016518544197884123978585412674181627741240662401602346834844484392395490311709295676430962225951197119508715581035692404284001161517631734396524508218093496874459308859563533449968367582497774681543852290603028681460709462009605890662206365319967677333931323228072331287861857122526567142058429557974883967302662399098873195435718536367194408949445160904203611467135852992939095354600542456969231463208984133176912437075161902488863996359153525086316495684502249020964199331929742907014274966700378113008191456993619168194874661896603663726654383305548136290434209528822300983335598466070177470481830644983525595774595772515916432618987962813682041129350418156682210503360158892816722802816706045640015823381206476339671681989754642004045224650562502108743780153377687372581950050647266767514184481557172557898654821930220633843938283914522003279511985830154200063948861118605144314092174790014352752831654212747478947415113131534921936461288329671770236072956819139836275844337035843740197529009280644623199820576001 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 770c340c18b728c23452bad2a8aafc7740ec87fa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'benefitsofwine.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000017100b260d40000040300483046022100fab4e7b26eed8ad5392014ab5354ab8b2c9d53e3c3a3846bd092d6811197784c0221009f007b6b520630409022ed2455e06684c9c4e600f0b065c242ca0333be6a6be4007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000017100b260eb0000040300473045022100840fcb4c82cc21b9e45f1535f3fb809ac5f6688b06b647c954756b7b74ec277902201ed28b764160d3ffc210066ac88595143f16d768a3a94cd2e9dffdeda6c66975 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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