coffeabase.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:c6:9c:32:14:db:5e:65:fb:17:a6:e8:7d:50:2f:01:18:e8 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=coffeabase.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c6:9c:32:14:db:5e:65:fb:17:a6:e8:7d:50:2f:01:18:e8Serial Number (int): 328920386050840303865012866445810713303272
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 1a:4c:8f:1e:c7:bd:3e:94:fa:42:e2:73:50:0d:b0:30:a8:5d:1e:8d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 40:c6:a7:1a:24:21:d9:3b:f8:b1:a0:be:10:67:c4:15:91:7e:52:fd
Fingerprint (sha256): 60:34:dc:63:67:6f:af:a7:c7:a4:4d:2d:52:ee:03:9b:1d:38:54:5e:59:2c:d2:84:45:73:74:83:a6:8d:86:89
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate coffeabase.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for coffeabase.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
coffeabase.org
coffeabase.sgn.cornell.edu
coffeabase.sgn.cornell.edu
Other certificates including the domain name coffeabase.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for coffeabase.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgISA8acMhTbXmX7F6bofVAvARjoMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMjIxNTE2NTRaFw0y MDA2MjAxNTE2NTRaMBkxFzAVBgNVBAMTDmNvZmZlYWJhc2Uub3JnMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7jWEszeZLCc35AL8a9WP942DszwOCDmp 80kYb010x4MG7dB+nV9eNFxRW6FZXIibfHF55CHfk3Mrx8V44j+SR7jMycj2lHnT 6iAqRl25ihZ2UcUDCELQXVJJe8Bym/tepqYKChoRNO7zHiYTTcLySph7dhW7FdEt L69C7VpAvzULtARYPl1XnxEa9PmTMo1mnmCh3M1M266EKhsTyYJZWXoClKo4xWDW sQoSqgpSx5VawPAFUjwNNARIQu/lOyPJBOJHVQM94dOgXaJV2U457OTbIVmEs1A3 e2OJQmIbUbYsXu+3UcE5v4ivVcOc0cfJiuXq26FhI7jUyYTYhy1BPwIDAQABo4IC gDCCAnwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQaTI8ex70+lPpC4nNQDbAwqF0e jTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRj MGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5v cmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5v cmcvMDUGA1UdEQQuMCyCDmNvZmZlYWJhc2Uub3Jnghpjb2ZmZWFiYXNlLnNnbi5j b3JuZWxsLmVkdTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAo MCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQUGCisG AQQB1nkCBAIEgfYEgfMA8QB3APCVpFnyANGCQBAtL5OIjq1L/h1H45nh0DSmsKiq jrJzAAABcQMIZ14AAAQDAEgwRgIhAJUvE4OWtV37/MoJAmxZ3jyFB4Nu/G6Tz5JG rV2ZBAd7AiEAtkQ/FHhnoMEBf9Qu/nzcQ9QtDliT441MEJfFsW8egWQAdgCyHgXM i6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAXEDCGdyAAAEAwBHMEUCIQDU I49hBj+gMMBm4qUuBcIl5LvxzbvbGTRxSSDX38Gy5wIgcWuoQ1yI8Q4h8fzAVsL0 2H9eA+zaTOkEp1Ow9qE8r+EwDQYJKoZIhvcNAQELBQADggEBAF+0+GJMeOne7aqC HfjUecamnYYNJhIJYSQhIFGQo7fSmqD1pt5WvkcqMXWrfAKJ9iKvdvsEJGogW+kI syYRj4B3OrbK/bdLPCk0tQH3xiXxZ0/+s/tfow9wNus8CiD3r1lIa0elcZr1oGf5 jRB2JpL2NbbPFTUq634mMQDk7QMX7UZN+bxiVEpoGobrCSGUUFSl/QSF9CcIcVsT gdj6ooiiV0vUouxm7uW8juJRhh14Q5/wGgcCKVj0lPiwF5ab1+2/Y+HQ3JytMgYo ZiGnrJf1FMOZ5cXqE7QG/Jc5VbWOglS5quJyTtRITxvmyk2Qkm2n6EbU44dslFSs bbu7GAQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7jWEszeZLCc35AL8a9WP 942DszwOCDmp80kYb010x4MG7dB+nV9eNFxRW6FZXIibfHF55CHfk3Mrx8V44j+S R7jMycj2lHnT6iAqRl25ihZ2UcUDCELQXVJJe8Bym/tepqYKChoRNO7zHiYTTcLy Sph7dhW7FdEtL69C7VpAvzULtARYPl1XnxEa9PmTMo1mnmCh3M1M266EKhsTyYJZ WXoClKo4xWDWsQoSqgpSx5VawPAFUjwNNARIQu/lOyPJBOJHVQM94dOgXaJV2U45 7OTbIVmEs1A3e2OJQmIbUbYsXu+3UcE5v4ivVcOc0cfJiuXq26FhI7jUyYTYhy1B PwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 328920386050840303865012866445810713303272 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-22 15:16:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-20 15:16:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'coffeabase.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30071107468660854910931972839968790676777776671658595627596182279974420927245894568137270632788735333359236599712588046339520048073033214823605751043989163738742681385322886744995580982301650818532398401434147055472552666967122586862639447530391407751962997340924210649047511416078283701390642086894906544261074509005204306618271384889655043183519278130669926787853823108469272239603148711653048331232137307671055279152560948532148350805234230182038052959248526852948937116580806048138049984250304569161776957500514915953777339197482102936293935747315443330631759796627814764730096987965384203560874535211801076646207 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1a4c8f1ec7bd3e94fa42e273500db030a85d1e8d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coffeabase.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'coffeabase.sgn.cornell.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb273000001710308675e0000040300483046022100952f138396b55dfbfcca09026c59de3c8507836efc6e93cf9246ad5d9904077b022100b6443f147867a0c1017fd42efe7cdc43d42d0e5893e38d4c1097c5b16f1e8164007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000171030867720000040300473045022100d4238f61063fa030c066e2a52e05c225e4bbf1cdbbdb1934714920d7dfc1b2e70220716ba8435c88f10e21f1fcc056c2f4d87f5e03ecda4ce904a753b0f6a13cafe1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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