www.lumacone.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:a8:77:98:48:e1:51:d6:5f:b1:9e:5a:63:ed:83:12:7f:31 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.lumacone.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a8:77:98:48:e1:51:d6:5f:b1:9e:5a:63:ed:83:12:7f:31Serial Number (int): 318663264276804459560845695311850564124465
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 39:90:ed:ae:b4:22:a0:90:29:91:b6:a6:3f:ac:f3:db:55:d5:f2:6c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 6b:51:81:3e:b5:33:a0:bc:1b:1d:b8:98:ef:67:fb:13:fc:eb:b0:d1
Fingerprint (sha256): 49:46:4a:3f:41:aa:16:b2:30:c7:66:6c:40:2d:90:c8:b2:2b:57:8e:77:92:f4:1e:8e:d8:fe:15:31:2e:1a:8e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.lumacone.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.lumacone.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.lumacone.com
Other certificates including the domain name lumacone.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.lumacone.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVzCCBT+gAwIBAgISA6h3mEjhUdZfsZ5aY+2DEn8xMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMDMwMTQzNDhaFw0y MDA0MDIwMTQzNDhaMBsxGTAXBgNVBAMTEHd3dy5sdW1hY29uZS5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDFMTXbB4pYlXbxWLg33AUuh33KZk21 AWNq7SnZIrbRiDMyHPy0VSH/X6d2XoFrEFdLMdTf3wyPpYzCr/Y7n0oUdf8MN19L xaZHQwTHSmxiQBjzidy7w6Y5tS8lJ3eO8gyHvyIkmcci1dOmVhcmV1JEgQ6tur9j bfyGWZsLY8lfnxZulStiH5P9LWDw9Y7iVj21rh3qZYeFyCASIRnMZ81AWIuVqq5w wW5PWVY43npF6SPDvMHfniQnJvqYu9/mAixZPLNtZP/oGdQmltirDbqRkYPKCBPf HgKOgLuiRzWozNH3TxOnyAiyBXI8FORYowfpCJezdy0dE6zVACcBHXcz0GWUoFlu wvLg5mNEJ+b7hvb1ih23gZcte/jdnTmTDg2Hh1DHd2m1ZuwgctGnQ7wAQzxQGYyz ADkBWrtlYmYvIvQ9kUrQ+c6CalUBvmU5oIQCsNSXHKQc6fqfW2P+zkPlEVbTKzeA +/AaO3/ItJ89iOE9egHKDxalvvCvHyZJt0kT4CMxtYT+HdRsZcUK5dp6L1dmcXtd RqJkQUdI2XgU9tn+x/jdjSxkedDOmksyaQUChf2a9FMY0np48QNJXag/4bru9wGg tWRz65nLsllGMr/Vl28rf31RY0pzEKQY5kqjVK+WqwHfBX4q6g0ApfJxcz2HEsyg K+m2f0EBC8jhPwIDAQABo4ICZDCCAmAwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ5 kO2utCKgkCmRtqY/rPPbVdXybDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHd3dy5sdW1hY29uZS5j b20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQC BIH0BIHxAO8AdgBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAW9p SZm+AAAEAwBHMEUCIDVvfmdxVMT7ZnjeKkVJgPnD3SgawINNTfKC49rI2m8RAiEA +MaaHyPeQkRrXDoBUl0KN3xGVQBpli86ezJIm/Nqq5oAdQAHt1wb5X1o//Gwxh0j Fce65ld8V5S3au68YToaadOiHAAAAW9pSZm8AAAEAwBGMEQCICwHIAnUCTdFeAec uKowVXow0NBP7jy5jddQ1hUUMUE0AiBU6BT3QXhOoOfkWPsDx6ivqITMwlg1owH8 4VqRxX7XQjANBgkqhkiG9w0BAQsFAAOCAQEAcUDj196hcdlZqliZeSHzFg0owIjK kkAQCXR7RRvIurUJBicdqvy/oSbtebVhGQUbUBH6QfFQ74FOR1BIowXXiUjkXl+N VWkILIpBTua6+cwmygil8s/lG2jUJOMf5IP1yJvv1jMIWkrPEsSj7ifPb1mSppN5 nufp52u3EYhd/rjW+hmi8Fl4PJBTipGMJFhpiE7pBgBLpIcbjKwHVsOmixJSCWoa 7ye9i+aWEr3D3LyiwBGAYMxUjz1af7vs5StW3QJoxkGEDdrNRZGhWgmMEQxDZXSK C6sP1VUgndRrzM9tPBjIIvUp0iSSWzcN+H4ETHFi8pFYcLi+zlT2pMgHhA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxTE12weKWJV28Vi4N9wF Lod9ymZNtQFjau0p2SK20YgzMhz8tFUh/1+ndl6BaxBXSzHU398Mj6WMwq/2O59K FHX/DDdfS8WmR0MEx0psYkAY84ncu8OmObUvJSd3jvIMh78iJJnHItXTplYXJldS RIEOrbq/Y238hlmbC2PJX58WbpUrYh+T/S1g8PWO4lY9ta4d6mWHhcggEiEZzGfN QFiLlaqucMFuT1lWON56Rekjw7zB354kJyb6mLvf5gIsWTyzbWT/6BnUJpbYqw26 kZGDyggT3x4CjoC7okc1qMzR908Tp8gIsgVyPBTkWKMH6QiXs3ctHROs1QAnAR13 M9BllKBZbsLy4OZjRCfm+4b29Yodt4GXLXv43Z05kw4Nh4dQx3dptWbsIHLRp0O8 AEM8UBmMswA5AVq7ZWJmLyL0PZFK0PnOgmpVAb5lOaCEArDUlxykHOn6n1tj/s5D 5RFW0ys3gPvwGjt/yLSfPYjhPXoByg8Wpb7wrx8mSbdJE+AjMbWE/h3UbGXFCuXa ei9XZnF7XUaiZEFHSNl4FPbZ/sf43Y0sZHnQzppLMmkFAoX9mvRTGNJ6ePEDSV2o P+G67vcBoLVkc+uZy7JZRjK/1ZdvK399UWNKcxCkGOZKo1SvlqsB3wV+KuoNAKXy cXM9hxLMoCvptn9BAQvI4T8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 318663264276804459560845695311850564124465 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-03 01:43:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-02 01:43:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.lumacone.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 804474103305516999563772510900752174768550939234477323660469672502367756785194731664608272627608174784949271324023613003951859825916680634997184119161606393157081257777322140374552596818270497777695891109087835065609910056866867890145703846100387591683155487588750668905476246042890609546959365016140250995242973536707745165106911187468010504711647588852685831524288889920017754286392968171159453294010855398992127535415952884419353164078195947721259497526801539868913671071652867082069518628205404137095689772334553974927231428790040391374473178016146691735081009702118792026903680582108066491176122272323030223319766852102386269219152429440843266617907294383124252262526122934174369624398253120900926649545929362201737235127070294899353326540571566028667142072018305639529167175854799216372630146051654550028815805220565513255889484709055443531267279069493689185507310404219540785913059588263717746825802063921230191137117278362563136742776010782306846277350811460723067559396924983116292678992711541761922676406262583286919727373610672048466157251087673901926608133326360651944770365613625399387349922062222067294278096202234817142527041394813885100158550934209729128782622960206329599627064427518074384467960623571133956232896831 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3990edaeb422a0902991b6a63facf3db55d5f26c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lumacone.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016f694999be00000403004730450220356f7e677154c4fb6678de2a454980f9c3dd281ac0834d4df282e3dac8da6f11022100f8c69a1f23de42446b5c3a01525d0a377c46550069962f3a7b32489bf36aab9a00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016f694999bc000004030046304402202c072009d409374578079cb8aa30557a30d0d04fee3cb98dd750d61514314134022054e814f741784ea0e7e458fb03c7a8afa884ccc25835a301fce15a91c57ed742 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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