shiftlo.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:35:db:fd:31:60:42:c3:ff:24:51:b7:1e:e9:c9:7b:98:60 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=shiftlo.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:35:db:fd:31:60:42:c3:ff:24:51:b7:1e:e9:c9:7b:98:60Serial Number (int): 279664238825737221527344189600315165349984
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 10:ec:db:69:50:04:9e:3f:19:1f:19:57:de:e1:7a:03:ce:ab:1b:7a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 7f:da:87:f6:f8:9f:d3:59:cf:82:e1:5a:92:5d:f2:f9:17:65:73:69
Fingerprint (sha256): 60:7a:79:2a:85:c6:0d:cd:32:f0:38:fe:55:cc:39:b3:57:80:c9:29:7e:c4:cb:9c:5a:d2:02:25:33:dc:34:f5
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate shiftlo.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for shiftlo.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
shiftlo.com
www.shiftlo.com
www.shiftlo.com
Other certificates including the domain name shiftlo.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for shiftlo.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXjCCBUagAwIBAgISAzXb/TFgQsP/JFG3HunJe5hgMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMTgwMDAyNDFaFw0y MDA2MTYwMDAyNDFaMBYxFDASBgNVBAMTC3NoaWZ0bG8uY29tMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAsX/F1D+t5W8VZrt04tX96wmFolpRyi3siN42 0SfbjX8NLNSvZHu4PXO3XVUmstdSaGAj1FQ5e6tMUtE3bxPHxjPbaVfQMkt9sUet xTISTnc823n4Bcb6PMcO1rlj/KwqNphr1Fw7Auf4/1MF7iQAKFhJJtc5aNewh39C boDudGxG0G8vBLcZhqGtu5/el2tGLVTeNnPwmhiJ1JFxRTORMA47gk4eFwaJ/vzP fJ9ymK4W+tDO0erO0uyH9vjSN1lv2PJVW2Y20WJGNxC8dis8vbCUD0XQvkSX86yt Amou0ixFuf1Hu3Hxo8JdHpWkh7tSmay2JpsVG2hiAEz32nuVLkQUM4xGdKr7vGMT DY5fcxA5bX+xmvBmpAYb7EuBIuDGwYUpMYLl3aO2649cG9N8ClPd5fAXisUoeHCw KOq4Xy5MJyBx+qi/Ow5HXdBrkigPGyzEtdL7oNbFDIkuDStFdEMHr0JL6XW0/ZGS 9Li1ibq4AZkxasFoyCgwh9IYUi0uPgYdbOCIWDro8mCRdRuqfyGzXK09cz/hJOgw BLWZSzVi7RPvP+ldQ4CHo/WtFw4B+q0x/AALXSTy5ArmEBuVzjJo5P+e4wLUlKVS ZUW+1wT21nXmXpME2j0hWzXZR0YcNR8uD5440/NVoNniIdLsFpi27qAhaHhwxXdp Y3arXbkCAwEAAaOCAnAwggJsMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUEOzbaVAE nj8ZHxlX3uF6A86rG3owHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAnBgNVHREEIDAeggtzaGlmdGxvLmNvbYIPd3d3LnNo aWZ0bG8uY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgw JgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYB BAHWeQIEAgSB9ASB8QDvAHYA5xLysDd+GmL7jskMYYTx6ns3y1YdESZb8+DzS/JB VG4AAAFw6yn6dgAABAMARzBFAiEA6VXv7NLOBFf6LcJV7EA8f55dws0SJ8mC2+yE iE76K1MCIDcs1jWN5k7zfHi3ea0nhTYj9DOck6mudkyCWhiNVQdaAHUAB7dcG+V9 aP/xsMYdIxXHuuZXfFeUt2ruvGE6GmnTohwAAAFw6yn6xwAABAMARjBEAiACQFqk 7zKeigqTQ25didGRh8DDtdrYz4Eajy89jCO4VwIgeR/6JXdxkxWy5maqTfwU0jEa ie2Xc61fENO2N8Yk0aswDQYJKoZIhvcNAQELBQADggEBAH0M2dCRAVbMeihYvsnb BGMJSaCHcHKMgmzCUm9Jk8D9wp/YaimD0Lpb19udZr1BIcUb0UP/NmaRoDfWKDjo E5xyOg7n8YGsaSvZdYRPNKau2YKktrvUYePbqVY3knVQFMyOakA/Iow8n07sMioA h/BgIQrm4JESBvx5S6+rw/Oon6BsOAoteXIFGTgKEmOhdoLXvrDneBhEZZl4GdoD gtwkfrViTHtv8c76ITJozimx0bGpZ4s4Ehivx+rbLuu1PEhOlrkMRknkp3MlMoCi Yt+IPcsaiB5/uxHxL2ieqCmz5G/3b8rtdmgtMrtR5BmT1jTSBk5hwDC/U8CsSZd5 J1c= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsX/F1D+t5W8VZrt04tX9 6wmFolpRyi3siN420SfbjX8NLNSvZHu4PXO3XVUmstdSaGAj1FQ5e6tMUtE3bxPH xjPbaVfQMkt9sUetxTISTnc823n4Bcb6PMcO1rlj/KwqNphr1Fw7Auf4/1MF7iQA KFhJJtc5aNewh39CboDudGxG0G8vBLcZhqGtu5/el2tGLVTeNnPwmhiJ1JFxRTOR MA47gk4eFwaJ/vzPfJ9ymK4W+tDO0erO0uyH9vjSN1lv2PJVW2Y20WJGNxC8dis8 vbCUD0XQvkSX86ytAmou0ixFuf1Hu3Hxo8JdHpWkh7tSmay2JpsVG2hiAEz32nuV LkQUM4xGdKr7vGMTDY5fcxA5bX+xmvBmpAYb7EuBIuDGwYUpMYLl3aO2649cG9N8 ClPd5fAXisUoeHCwKOq4Xy5MJyBx+qi/Ow5HXdBrkigPGyzEtdL7oNbFDIkuDStF dEMHr0JL6XW0/ZGS9Li1ibq4AZkxasFoyCgwh9IYUi0uPgYdbOCIWDro8mCRdRuq fyGzXK09cz/hJOgwBLWZSzVi7RPvP+ldQ4CHo/WtFw4B+q0x/AALXSTy5ArmEBuV zjJo5P+e4wLUlKVSZUW+1wT21nXmXpME2j0hWzXZR0YcNR8uD5440/NVoNniIdLs Fpi27qAhaHhwxXdpY3arXbkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 279664238825737221527344189600315165349984 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-18 00:02:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-16 00:02:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shiftlo.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 724133200909926500418019988616531912293468790854423543021794919748192926336660469704414503952523250678601924202569071820636680994112886923826306780637871598336753545523382147817039473764956768388651640824248556164460450398479064842177605159685759635304656439287653449768229211949172639241322781958142770678279018973344403157635860524961739161680545509657325526528108981863101946935768447805899810686892442176680771927351219426974813009281840602236862000442573733629588729129053709686401659045214619529164318980491942940964302592720778119458931123138642078563440832243420483199062903287561209430217547779644385511975166868696827623110236994381222440165593047699011864536628230479946748171062632212094211326709273080106635831184278530309128318917219476182153083676956910652428231296116699413742325899902455952745317805895281481607795377360633666792308051429884530516054003234711394306753924889599935013395166055281661640671944800052457060794181292888805798975929322301742109566443839133318221458773484359337940168910191091187332966595997772304392401519424767539500397621877233871691878726938039707828872116976678924341434760715820433480722478733936741754249441707375524483974468120371571764185638720342549176543515873370958797239705017 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 10ecdb6950049e3f191f1957dee17a03ceab1b7a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shiftlo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.shiftlo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e00000170eb29fa760000040300473045022100e955efecd2ce0457fa2dc255ec403c7f9e5dc2cd1227c982dbec84884efa2b530220372cd6358de64ef37c78b779ad27853623f4339c93a9ae764c825a188d55075a00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c00000170eb29fac70000040300463044022002405aa4ef329e8a0a93436e5d89d19187c0c3b5dad8cf811a8f2f3d8c23b8570220791ffa2577719315b2e666aa4dfc14d2311a89ed9773ad5f10d3b637c624d1ab . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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