shoppingcart.roughnotes.com

Issued by R3

About this certificate

This digital certificate with serial number 03:79:6d:74:05:9b:f9:d3:72:94:c6:d2:f9:9e:a2:e8:ee:f4 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=shoppingcart.roughnotes.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:79:6d:74:05:9b:f9:d3:72:94:c6:d2:f9:9e:a2:e8:ee:f4
Serial Number (int): 302656512464460170488948452527463509585652
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: b2:54:fb:97:b7:8b:30:ae:f5:32:71:99:3c:f8:ae:29:cc:e6:7d:f5
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 46:61:8c:e9:b7:5c:e8:ee:d9:f2:3d:f5:3b:27:56:46:39:21:62:61
Fingerprint (sha256): 5a:96:bf:0b:d2:3a:83:e4:a9:98:c9:a8:c3:35:16:89:bb:d8:27:f7:21:d7:71:e5:b9:b8:4a:23:55:71:df:4f

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate shoppingcart.roughnotes.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for shoppingcart.roughnotes.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

shoppingcart.roughnotes.com

Other certificates including the domain name roughnotes.com

(limited to 100 certificates)
roughnotes.com
shoppingcart.roughnotes.com
roughnotes.com
roughnotes.com
roughnotes.com
dev.roughnotes.com
roughnotes.com
roughnotes.com
shoppingcart.roughnotes.com
shoppingcart.roughnotes.com
roughnotes.com
roughnotes.com
roughnotes.com
shoppingcart.roughnotes.com
shoppingcart.roughnotes.com
shoppingcart.roughnotes.com
roughnotes.com
roughnotes.com
shoppingcart.roughnotes.com
shoppingcart.roughnotes.com
roughnotes.com
shoppingcart.roughnotes.com
shoppingcart.roughnotes.com
roughnotes.com
shoppingcart.roughnotes.com
roughnotes.com
shoppingcart.roughnotes.com
shoppingcart.roughnotes.com
roughnotes.com
roughnotes.com
roughnotes.com
roughnotes.com
shoppingcart.roughnotes.com

Certificate

The complete raw certificate details for shoppingcart.roughnotes.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7iJkEllMKti5tXDC8RNn
BnM4bpIXIjqgTIQFv0KmpwKWLBnCCpc7dfjW8p/tXu0IbXmp8CdK5hYBY9uIGT92
A3fWH1G8FlF0v8gT8oDga+MuE5AJEY1ipz6Jf5Suhdx+D951q7BBZQgznV5+rP5H
lEHxucjtB/Z4ammth/FV6L/gW9PWV88nUrIjWy4i/+IoiImIgbdsy99xrrl9W6X5
UYWsa7t3R2gR+Wm0G83XctJJOw+t/Bw1wGK8rrV1cKnbi82voxotX8mBBVQ2cdHk
aDw40sYZ1UnpnZyBlks6nEENS12hlBm08feqnWwcX77E9itu4ZEnRidAaox+gwTb
bwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 302656512464460170488948452527463509585652
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-06 19:33:32 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-04 19:33:31 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shoppingcart.roughnotes.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30061675369230619051614946008149225464615273602086263342977921918411456443694484178737518806956660485752214769046707483027526506604715885630250194568178861561830854875763974670638869821156176841622354735469809386177421824773773822541054003206621048740017453252044618218807723945504867702790235597313662463380576298709085987865464894658974022471261809569734526726874593974401452379236967312842655534017814693409102192049864046831949476024315238337420335679338373033126077857331404951602751975215184716416517832292560595750285952473287215975656002957692016260398441303685188397875049285947291328539766841900885946456943
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							b254fb97b78b30aef53271993cf8ae29cce67df5
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shoppingcart.roughnotes.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000187f2c50a0200000403004730450220169ce49cf84c3708da3049634326f41a68d6929e9a3e43ede86e2e41b39b7a87022100b489d27d3b496a3da344284c7cd1a5d3690520596a79dce383e83500b9814004007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e00000187f2c509e600000403004730450220164925e0ff3cd4e023824923929d86e8c8d6d97ee9eb4bdc4ddde8d6b9a934e6022100c023148aa19a9f6092bfe3d3228ced8f1c68839fd562b30869cb52da4f453daf
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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