www.newyorkcentralpark.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:a4:a0:52:f8:bd:22:10:4b:21:61:81:57:dc:9c:a2:cc:b2 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.newyorkcentralpark.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a4:a0:52:f8:bd:22:10:4b:21:61:81:57:dc:9c:a2:cc:b2Serial Number (int): 317356273263004880952145802030407900908722
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 6f:e7:6a:19:29:b8:5c:7b:93:77:2e:7d:8e:88:5b:b2:84:2c:b6:d7
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 9f:29:f4:55:3c:6e:9c:ed:e1:f7:74:7f:ff:c0:d3:ae:c6:29:1b:47
Fingerprint (sha256): 41:23:94:ec:4d:7d:b5:aa:f5:cc:a5:10:75:c6:c6:e4:ff:98:8b:71:f6:fc:71:27:b0:5b:41:9c:25:ca:9e:22
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.newyorkcentralpark.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.newyorkcentralpark.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.newyorkcentralpark.com
Other certificates including the domain name newyorkcentralpark.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.newyorkcentralpark.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGbTCCBVWgAwIBAgISA6SgUvi9IhBLIWGBV9ycosyyMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MjkxMDQzMjNaFw0x OTEyMjgxMDQzMjNaMCUxIzAhBgNVBAMTGnd3dy5uZXd5b3JrY2VudHJhbHBhcmsu Y29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAz8usl1QhNHvBDSgR 3ttYycfGLN/tDy7t4PQM3Wk9Mlt2+pYCPvdxQWEKoDnIIKesBD/QA8F055z+lbX1 iZum/0OKMg48R6hB67kropg9TexpDyYsfy4muYz9tUwwS2rKSBtWup8TDTZFxB0E nZUrp36ZKCO8Retb2tReN9YGy9L8QkbzxU2CLmKizf6IuOo3FDzlauZlQN9y2JdT tADPwpM87lrqdoTt/nWT6OdA2HHELPBmfvL45ebPtGSJ5fD1S9Ot/RgpxdppKyw8 CI8bujHctDZxYfBmvBD1hDkcuQl4cU8Gy4N70wHcPKdSQLe3/B+GaW7q/YifYUoe 9pkajQrNaq1a4uzNpI2HhvBybjDPxigwkf8/YEbHw75ClWcCnCQcCYBKkULwGRHJ X8R5I52ANucZhylzuxRddZ3yDPhz82YnG45NJe0EigJws9Tut/qYUCIZZMYOwb3H 8rpKqYSjP887y2TNYXl9UnhYbjTxaqN8h9ughGqZ1zuDKhNfGo4Y2BZ5W0lmZgum LlAI+/ilgxDhFqVgQEixf9d922+nFlNHMH4uJC57CLwKkU7ONSGUQXw3TMAvHUUs 1xnvWVYCkvS/z3VljedC470IfWeeGLEyvlhvElkQ/BO5fAY3CW1ozSSGU+x+P9F3 bwDzJjJIz2Qu5AKW+hNuRdyP87kCAwEAAaOCAnAwggJsMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQUb+dqGSm4XHuTdy59johbsoQsttcwHwYDVR0jBBgwFoAUqEpqYwR9 3brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRw Oi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRw Oi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzAlBgNVHREEHjAcghp3d3cu bmV3eW9ya2NlbnRyYWxwYXJrLmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3Bgsr BgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0 Lm9yZzCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB3AGPy283oO8wszwtyhCdXazOk jWF3j711pjixx2hUS9iNAAABbXzVGhQAAAQDAEgwRgIhANipGZISYoDQ+lIawqu1 dRhrAEP9wBGMYvI79cT7zsqOAiEAuGs2wwRMKIkCkN/wXS7xKGJI73UNRy5TPtHv /ySV4yoAdgBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAW181RqY AAAEAwBHMEUCIDAotn8C6UuvhSU62LwZYF7sNI1UpyqS8+UIjXkSf+Y2AiEAszld hfhMYJNuSCahXMLKTldLfAhPfaOjCPN7/WaBtrMwDQYJKoZIhvcNAQELBQADggEB ABvbuZR1rNiWbEq1l/R8jPK66w76Rq26uv8GPGfSHRs4YtllarsDo1IVdz86m2Kl ACuoK8SAEIeTvJ6Add9oRdwR9Auk/ZqIZaFe2lZDFVHruTYCoAepmvprZGXrecxE 7bhBwPts2I5+Y47qnOeSFGW9KLyaNFT8Dfyg0n/Q1/cyKCvFQ9EcGNUJs7JE8Zzm +NnMgnQLnf3tTtZ9Dg6ICJO6tDx04we4WCU4ZxkWhYs9nmDi0giPclJcA9HH4EM6 2C1N9lUKzgjzikqaSgCGaK0iFNQVU1FmvnRgPaKR3GoGwnH4NWGwUhXMBsvd6cTl isNkMjJQ38MYdw2b/0PrFts= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAz8usl1QhNHvBDSgR3ttY ycfGLN/tDy7t4PQM3Wk9Mlt2+pYCPvdxQWEKoDnIIKesBD/QA8F055z+lbX1iZum /0OKMg48R6hB67kropg9TexpDyYsfy4muYz9tUwwS2rKSBtWup8TDTZFxB0EnZUr p36ZKCO8Retb2tReN9YGy9L8QkbzxU2CLmKizf6IuOo3FDzlauZlQN9y2JdTtADP wpM87lrqdoTt/nWT6OdA2HHELPBmfvL45ebPtGSJ5fD1S9Ot/RgpxdppKyw8CI8b ujHctDZxYfBmvBD1hDkcuQl4cU8Gy4N70wHcPKdSQLe3/B+GaW7q/YifYUoe9pka jQrNaq1a4uzNpI2HhvBybjDPxigwkf8/YEbHw75ClWcCnCQcCYBKkULwGRHJX8R5 I52ANucZhylzuxRddZ3yDPhz82YnG45NJe0EigJws9Tut/qYUCIZZMYOwb3H8rpK qYSjP887y2TNYXl9UnhYbjTxaqN8h9ughGqZ1zuDKhNfGo4Y2BZ5W0lmZgumLlAI +/ilgxDhFqVgQEixf9d922+nFlNHMH4uJC57CLwKkU7ONSGUQXw3TMAvHUUs1xnv WVYCkvS/z3VljedC470IfWeeGLEyvlhvElkQ/BO5fAY3CW1ozSSGU+x+P9F3bwDz JjJIz2Qu5AKW+hNuRdyP87kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 317356273263004880952145802030407900908722 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-29 10:43:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-28 10:43:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.newyorkcentralpark.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 847732096208831986982741172171845742128603574858111105696851465842746317726948085006815925051221205782427434071674051581460759313297402129571255870048503191548372618129738747405238012863915845616634380002922701240541346341474334895839391404122210737581006599782213866367794834352228749941238771192510373560025089698373422625715157072501581881809714145979924524931010236874664965881876005683821486526101353531545792003673520502987299606640504935187099673341888694562144407454999550979849351666792639889476294978474389174721639402821441203546929787895922382654856962797182205581270639710491425193743048419806909598437039178938940189273551328896094243281436039425452846516413831751420507895912110670862752496175853948382196736338082944023066258922488679063192509773043494098480321599348726002483231331864956758906549189949712344924194092836432864508919173556213588574218401645157564839946409992911485857677680942527350269763555380301278488800289428449280777556864926123240043191692371040082152071337061318927135797295144607243844308153646415814860722856559586370094666124993307839953642769850329314217002765934819295572538168646699705829869919490305477672903945876542953814207128595056490313697450902115141922850066987418024823479071673 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6fe76a1929b85c7b93772e7d8e885bb2842cb6d7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.newyorkcentralpark.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d7cd51a140000040300483046022100d8a91992126280d0fa521ac2abb575186b0043fdc0118c62f23bf5c4fbceca8e022100b86b36c3044c28890290dff05d2ef1286248ef750d472e533ed1efff2495e32a0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016d7cd51a98000004030047304502203028b67f02e94baf85253ad8bc19605eec348d54a72a92f3e5088d79127fe636022100b3395d85f84c60936e4826a15cc2ca4e574b7c084f7da3a308f37bfd6681b6b3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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