coffeabase.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:c6:9c:32:14:db:5e:65:fb:17:a6:e8:7d:50:2f:01:18:e8 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=coffeabase.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:c6:9c:32:14:db:5e:65:fb:17:a6:e8:7d:50:2f:01:18:e8
Serial Number (int): 328920386050840303865012866445810713303272
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 1a:4c:8f:1e:c7:bd:3e:94:fa:42:e2:73:50:0d:b0:30:a8:5d:1e:8d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 40:c6:a7:1a:24:21:d9:3b:f8:b1:a0:be:10:67:c4:15:91:7e:52:fd
Fingerprint (sha256): 60:34:dc:63:67:6f:af:a7:c7:a4:4d:2d:52:ee:03:9b:1d:38:54:5e:59:2c:d2:84:45:73:74:83:a6:8d:86:89

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate coffeabase.org

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for coffeabase.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

coffeabase.org
coffeabase.sgn.cornell.edu

Other certificates including the domain name coffeabase.org

(limited to 100 certificates)
coffeabase.org
coffeabase.org
coffeabase.org
coffeabase.org

Certificate

The complete raw certificate details for coffeabase.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgISA8acMhTbXmX7F6bofVAvARjoMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMjIxNTE2NTRaFw0y
MDA2MjAxNTE2NTRaMBkxFzAVBgNVBAMTDmNvZmZlYWJhc2Uub3JnMIIBIjANBgkq
hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7jWEszeZLCc35AL8a9WP942DszwOCDmp
80kYb010x4MG7dB+nV9eNFxRW6FZXIibfHF55CHfk3Mrx8V44j+SR7jMycj2lHnT
6iAqRl25ihZ2UcUDCELQXVJJe8Bym/tepqYKChoRNO7zHiYTTcLySph7dhW7FdEt
L69C7VpAvzULtARYPl1XnxEa9PmTMo1mnmCh3M1M266EKhsTyYJZWXoClKo4xWDW
sQoSqgpSx5VawPAFUjwNNARIQu/lOyPJBOJHVQM94dOgXaJV2U457OTbIVmEs1A3
e2OJQmIbUbYsXu+3UcE5v4ivVcOc0cfJiuXq26FhI7jUyYTYhy1BPwIDAQABo4IC
gDCCAnwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF
BQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQaTI8ex70+lPpC4nNQDbAwqF0e
jTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRj
MGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5v
cmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5v
cmcvMDUGA1UdEQQuMCyCDmNvZmZlYWJhc2Uub3Jnghpjb2ZmZWFiYXNlLnNnbi5j
b3JuZWxsLmVkdTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAo
MCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQUGCisG
AQQB1nkCBAIEgfYEgfMA8QB3APCVpFnyANGCQBAtL5OIjq1L/h1H45nh0DSmsKiq
jrJzAAABcQMIZ14AAAQDAEgwRgIhAJUvE4OWtV37/MoJAmxZ3jyFB4Nu/G6Tz5JG
rV2ZBAd7AiEAtkQ/FHhnoMEBf9Qu/nzcQ9QtDliT441MEJfFsW8egWQAdgCyHgXM
i6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAXEDCGdyAAAEAwBHMEUCIQDU
I49hBj+gMMBm4qUuBcIl5LvxzbvbGTRxSSDX38Gy5wIgcWuoQ1yI8Q4h8fzAVsL0
2H9eA+zaTOkEp1Ow9qE8r+EwDQYJKoZIhvcNAQELBQADggEBAF+0+GJMeOne7aqC
HfjUecamnYYNJhIJYSQhIFGQo7fSmqD1pt5WvkcqMXWrfAKJ9iKvdvsEJGogW+kI
syYRj4B3OrbK/bdLPCk0tQH3xiXxZ0/+s/tfow9wNus8CiD3r1lIa0elcZr1oGf5
jRB2JpL2NbbPFTUq634mMQDk7QMX7UZN+bxiVEpoGobrCSGUUFSl/QSF9CcIcVsT
gdj6ooiiV0vUouxm7uW8juJRhh14Q5/wGgcCKVj0lPiwF5ab1+2/Y+HQ3JytMgYo
ZiGnrJf1FMOZ5cXqE7QG/Jc5VbWOglS5quJyTtRITxvmyk2Qkm2n6EbU44dslFSs
bbu7GAQ=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7jWEszeZLCc35AL8a9WP
942DszwOCDmp80kYb010x4MG7dB+nV9eNFxRW6FZXIibfHF55CHfk3Mrx8V44j+S
R7jMycj2lHnT6iAqRl25ihZ2UcUDCELQXVJJe8Bym/tepqYKChoRNO7zHiYTTcLy
Sph7dhW7FdEtL69C7VpAvzULtARYPl1XnxEa9PmTMo1mnmCh3M1M266EKhsTyYJZ
WXoClKo4xWDWsQoSqgpSx5VawPAFUjwNNARIQu/lOyPJBOJHVQM94dOgXaJV2U45
7OTbIVmEs1A3e2OJQmIbUbYsXu+3UcE5v4ivVcOc0cfJiuXq26FhI7jUyYTYhy1B
PwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 328920386050840303865012866445810713303272
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-22 15:16:54 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-20 15:16:54 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'coffeabase.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30071107468660854910931972839968790676777776671658595627596182279974420927245894568137270632788735333359236599712588046339520048073033214823605751043989163738742681385322886744995580982301650818532398401434147055472552666967122586862639447530391407751962997340924210649047511416078283701390642086894906544261074509005204306618271384889655043183519278130669926787853823108469272239603148711653048331232137307671055279152560948532148350805234230182038052959248526852948937116580806048138049984250304569161776957500514915953777339197482102936293935747315443330631759796627814764730096987965384203560874535211801076646207
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							1a4c8f1ec7bd3e94fa42e273500db030a85d1e8d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coffeabase.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coffeabase.sgn.cornell.edu'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb273000001710308675e0000040300483046022100952f138396b55dfbfcca09026c59de3c8507836efc6e93cf9246ad5d9904077b022100b6443f147867a0c1017fd42efe7cdc43d42d0e5893e38d4c1097c5b16f1e8164007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000171030867720000040300473045022100d4238f61063fa030c066e2a52e05c225e4bbf1cdbbdb1934714920d7dfc1b2e70220716ba8435c88f10e21f1fcc056c2f4d87f5e03ecda4ce904a753b0f6a13cafe1
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		005fb4f8624c78e9deedaa821df8d479c6a69d860d261209612421205190a3b7d29aa0f5a6de56be472a3175ab7c0289f622af76fb04246a205be908b326118f80773ab6cafdb74b3c2934b501f7c625f1674ffeb3fb5fa30f7036eb3c0a20f7af59486b47a5719af5a067f98d10762692f635b6cf15352aeb7e263100e4ed0317ed464df9bc62544a681a86eb0921945054a5fd0485f42708715b1381d8faa288a2574bd4a2ec66eee5bc8ee251861d78439ff01a07022958f494f8b017969bd7edbf63e1d0dc9cad3206286621a7ac97f514c399e5c5ea13b406fc973955b58e8254b9aae2724ed4484f1be6ca4d90926da7e846d4e3876c9454ac6dbbbb1804