www.legacysuperstore.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:11:ea:a3:e8:3d:0a:72:96:9a:38:a1:27:d1:d6:53:dc:10 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.legacysuperstore.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:11:ea:a3:e8:3d:0a:72:96:9a:38:a1:27:d1:d6:53:dc:10Serial Number (int): 267433548438693484649311172228644577991696
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 31:bc:1d:34:41:08:23:eb:10:a4:fa:b1:4d:1f:de:d0:31:d9:b6:cf
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): b9:0f:36:52:e6:2b:74:64:35:d2:59:d0:39:dd:03:c5:be:df:8d:87
Fingerprint (sha256): 2b:2b:c8:f2:6a:9c:83:74:14:f4:40:bc:ce:44:35:9a:b6:ad:d4:18:83:4e:72:41:a1:64:80:f9:70:24:7f:a1
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.legacysuperstore.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.legacysuperstore.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.legacysuperstore.com
Other certificates including the domain name legacysuperstore.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.legacysuperstore.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGaTCCBVGgAwIBAgISAxHqo+g9CnKWmjihJ9HWU9wQMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTExNTAwMjFaFw0y MDAxMDkxNTAwMjFaMCMxITAfBgNVBAMTGHd3dy5sZWdhY3lzdXBlcnN0b3JlLmNv bTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAL49uJfwmfiY0Lvs+L1w vjC9+97pM3qet7B+KYGiovmGa2VCh9QrWZ3s1mfiBR+W0+vAfQKKlRA8FuxUYwNB heuIW6LLnVIpSCrdP2Y7uvrW8LVJyqxF3+kRURCsrzvRpEfuhjb94bnpoYBMt6ts PH84t3h1iboUo/rZbKDXaai0lVrzD6JMuQvfHNRkMP6srLw2sgf4BSIZz0ICamQ4 qU/g7kRrsrhsNimGlguFJuGjmiEvpc2K+cmuLDLdwmuW6VxcWueEWolQ+tL6Qyrq dujxP0+/IsSRucrj/z5G0HP5ahOHyKS3zusHXhZAA84k+Fy7V4m1iJaNIJ5p5UZv ZqGx/ff1RSrm2Nhl45EnzllgqUxxtFIkFqfH0tC/2fF7pmlg0nGymEjOVfKo7cO3 vF7APt5i8RhPvx2dTJUNrIG3AtkRN8CerqEXVvv4Y9Tdp93K2Hnw8LLcFW+k5WQu bSHxYjzwIqB0yYFPxPnrH5NhcnxWAyaegfDxCSflx45LGHpjDj9vidFbNQkwq5c5 9E2BxSoo5xrZIBzguSCSTDSmgiXZHkP0UFNC6ROmCTLKQbViieNCcjUGAEPxxcS0 Lg1mJ69QxN2QAOEKlKz+gqe6k0VU8Xl7eh7ucAF/ALiepePlw0bJSFPWT9q6CLUN qOIeeDlqr52GE8ODlm12XrSxAgMBAAGjggJuMIICajAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFDG8HTRBCCPrEKT6sU0f3tAx2bbPMB8GA1UdIwQYMBaAFKhKamMEfd26 5tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDov L29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDov L2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wIwYDVR0RBBwwGoIYd3d3Lmxl Z2FjeXN1cGVyc3RvcmUuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQB gt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3Jn MIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYAsh4FzIuizYogTodm+Su5iiUgZ2va +nDnsklTLe+LkF4AAAFtu4ytrgAABAMARzBFAiEA7rzPsYUxRly8G5n7YCNw61+p gVS2uCDfDViJxV2TPZgCIEJKjSk00J7thevhbS3x5RBYpok7xSBwavOpORWJJEWV AHcAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFtu4yvwgAABAMA SDBGAiEA/dPF1tfpfAaweu/MC7w+LaoZ3yaAZPXWMVQ+wHPQnCQCIQCwof0wR28P lTZ8ZJz/QvCavUpTrXr7WO2kCsq50pACTTANBgkqhkiG9w0BAQsFAAOCAQEAfo1u jqRG4Q3vqC22Drb01+YX0SJdEYaY+oXvvCAyYSN/GtfyiDr5lK1s78B1dsT9co8k SHfgtiWaBnswvA9jEE4rfrUDFUH5kA3sx5dFN7Wb0GicQ1FFwptFBrYUwbnRlUfW CISDNerU0Ot0ZN5sGOEGv9JlwdZZlapj7z/Qf5oTHJ5uoG5Bm/f54fNopUiBRCsx rVUtsOI6aMCR7vo293iEfniMvnwq1fkVPID7Tmjn4OZqPlWuFuVaM0aZohw+0nge GZkiHRdCG4rRGZg6m+QAJPxW38++soKo9Xc3DZb9dk+1lIYfrnJSO35nxNw0umMg EWSgrt/XFmpi+sI4Sw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvj24l/CZ+JjQu+z4vXC+ ML373ukzep63sH4pgaKi+YZrZUKH1CtZnezWZ+IFH5bT68B9AoqVEDwW7FRjA0GF 64hbosudUilIKt0/Zju6+tbwtUnKrEXf6RFREKyvO9GkR+6GNv3huemhgEy3q2w8 fzi3eHWJuhSj+tlsoNdpqLSVWvMPoky5C98c1GQw/qysvDayB/gFIhnPQgJqZDip T+DuRGuyuGw2KYaWC4Um4aOaIS+lzYr5ya4sMt3Ca5bpXFxa54RaiVD60vpDKup2 6PE/T78ixJG5yuP/PkbQc/lqE4fIpLfO6wdeFkADziT4XLtXibWIlo0gnmnlRm9m obH99/VFKubY2GXjkSfOWWCpTHG0UiQWp8fS0L/Z8XumaWDScbKYSM5V8qjtw7e8 XsA+3mLxGE+/HZ1MlQ2sgbcC2RE3wJ6uoRdW+/hj1N2n3crYefDwstwVb6TlZC5t IfFiPPAioHTJgU/E+esfk2FyfFYDJp6B8PEJJ+XHjksYemMOP2+J0Vs1CTCrlzn0 TYHFKijnGtkgHOC5IJJMNKaCJdkeQ/RQU0LpE6YJMspBtWKJ40JyNQYAQ/HFxLQu DWYnr1DE3ZAA4QqUrP6Cp7qTRVTxeXt6Hu5wAX8AuJ6l4+XDRslIU9ZP2roItQ2o 4h54OWqvnYYTw4OWbXZetLECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 267433548438693484649311172228644577991696 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-11 15:00:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-09 15:00:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.legacysuperstore.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 776115966637276534385824443574991729178881666035991236474874027652722465041670614762966682951806305639904330173816930719286170199138910495474854471268311116366066895885193481630841431821134428361839843322250896898355004318667997948544787980432874909745610580125080325801041945337838076169926425448818490728348398589621492457837897883797914284491771373607178373451125824258960687725433453787814018500587294574211704729159646627219190122962401676749062809814148449287027726531157044195204411757584959611091422448183184753306639802166804967865736155081842043682306723593440459850384709814291639360617878376219069062620450369860740176136830629834421580831685942176266593343663577867559952003004959596549860249002080568928636656472236517891127995311955301733218347695558212555687647732581033291929513510362661976249403184564017601966830361633717091678680171518906764307371181343129728133473399714522079595522427846932910659122261955967787444473553216282087819269015825681013486599364344962889731293654443064081376984228257102013154589346076273807957912592691293886336436065688146972758508906918790365113705801195398996571587420561566445446105295400022898203149022739572600001752750613112843988101943110391153942276462657957749736402236593 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 31bc1d34410823eb10a4fab14d1fded031d9b6cf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.legacysuperstore.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016dbb8cadae0000040300473045022100eebccfb18531465cbc1b99fb602370eb5fa98154b6b820df0d5889c55d933d980220424a8d2934d09eed85ebe16d2df1e51058a6893bc520706af3a93915892445950077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016dbb8cafc20000040300483046022100fdd3c5d6d7e97c06b07aefcc0bbc3e2daa19df268064f5d631543ec073d09c24022100b0a1fd30476f0f95367c649cff42f09abd4a53ad7afb58eda40acab9d290024d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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