le-trek.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:1a:6d:e8:eb:41:c2:98:44:12:f7:03:4c:be:04:35:69:c8 was issued on by Let's Encrypt.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=le-trek.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:1a:6d:e8:eb:41:c2:98:44:12:f7:03:4c:be:04:35:69:c8Serial Number (int): 357442580502973434138370087169221073398216
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 25:b7:8c:10:df:65:16:45:29:83:95:a2:88:53:d7:cb:8f:15:11:4b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): c1:9b:06:a8:8a:6d:41:48:52:09:41:bd:fa:f8:d4:48:c7:5e:fc:c7
Fingerprint (sha256): 65:a9:46:0e:1c:6e:d9:dc:94:bc:8d:77:22:a8:5b:6c:4f:a7:47:f0:a3:19:49:e2:4a:f3:7c:fe:f9:7f:4f:1d
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate le-trek.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for le-trek.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
le-trek.com
le-trek.petitsbonheurs.com
mail.le-trek.com
www.le-trek.com
www.le-trek.petitsbonheurs.com
le-trek.petitsbonheurs.com
mail.le-trek.com
www.le-trek.com
www.le-trek.petitsbonheurs.com
Other certificates including the domain name le-trek.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for le-trek.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFrDCCBJSgAwIBAgISBBpt6OtBwphEEvcDTL4ENWnIMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAxMjIxMTM2NTRaFw0x OTA0MjIxMTM2NTRaMBYxFDASBgNVBAMTC2xlLXRyZWsuY29tMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEA18WZTBfgD4jiMcz7oneuRgjDslMByfOrqf4P 7528C77fCKz+F8d4w3O5RKGlACr3YW0inYD0zyiTlfkAOvhPemUIQradaystCTHT R8klbIMmF99hNl8qQJFxWDzJF6XBoOOmECKowqAHStWOadnw6fpDPC4UPfuoH1YJ aEaJVrW1xwGWQCG5HTO+fuR+jKoY1cKBc2uvmK9krNiIyGYxOjgfRLrRYB27iOSG aqm2irk50JGXwv6zMsvNuvtuIByHc339TQ9v+DqRM49coXSzwIECpwxc2kuLukoH cwZJKNcx4QFTx+NRV04oABSfvelGItWSyZQrGCQ1AD3v+T6vnQIDAQABo4ICvjCC ArowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQlt4wQ32UWRSmDlaKIU9fLjxURSzAf BgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEw LgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcw LwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcv MHUGA1UdEQRuMGyCC2xlLXRyZWsuY29tghpsZS10cmVrLnBldGl0c2JvbmhldXJz LmNvbYIQbWFpbC5sZS10cmVrLmNvbYIPd3d3LmxlLXRyZWsuY29tgh53d3cubGUt dHJlay5wZXRpdHNib25oZXVycy5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYL KwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlw dC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQDiaUuuJujpQAnohhu2O4PU Puf+dIj7pI8okwGd3fHb/gAAAWh1kEBRAAAEAwBGMEQCIFPHv5Lw2AgD0wUQoAo6 ni4OQz54gJ2RqkiExlsT00nzAiBzQ05Ev5mPBTrEiyJXh1qJeV3yM68bBSyPkp3/ RbCIkwB2ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVFR/R4AAABaHWQQEgA AAQDAEcwRQIge5DndTzwTFIZMEWGYIPBZJVfNgL62b/D9D9i9ZyvLL0CIQCidIjl g8uaHi5Pvfs7Tb43xsz9ZWNldwkZN4H8vS61kzANBgkqhkiG9w0BAQsFAAOCAQEA XrskTpBnZrYaCg9k+Pn6K40rzYJLwTSrHQKfJdyekSTVXIWfC84RYFblHm2GOVoq 4yGQDhV+eGR1LZ00WFzQJd4eH1epb+getAXzCmSdZEEiqfRYdpvo5HMjuKErvD21 Sc5kW/AGRFGjovinF6fUZqdMeIwTrZ5bTCCxEEHbnrPLEVHn9ooymQYnTPnNu6uu 3gySX7Mi0i7C2qH+/LkkTzvJEkUUNjaV+1ljuFzGjpd64d/na4peHziEiRnTdKjp cVOCZnjhE1CuxQXDWsRM4R6Szx0xjeoA69/La1H9E/HaG+1hQ7ZN8XDXojSuOw2a o0gx80GyVuiBLLaCqZJ69w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA18WZTBfgD4jiMcz7oneu RgjDslMByfOrqf4P7528C77fCKz+F8d4w3O5RKGlACr3YW0inYD0zyiTlfkAOvhP emUIQradaystCTHTR8klbIMmF99hNl8qQJFxWDzJF6XBoOOmECKowqAHStWOadnw 6fpDPC4UPfuoH1YJaEaJVrW1xwGWQCG5HTO+fuR+jKoY1cKBc2uvmK9krNiIyGYx OjgfRLrRYB27iOSGaqm2irk50JGXwv6zMsvNuvtuIByHc339TQ9v+DqRM49coXSz wIECpwxc2kuLukoHcwZJKNcx4QFTx+NRV04oABSfvelGItWSyZQrGCQ1AD3v+T6v nQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 357442580502973434138370087169221073398216 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-22 11:36:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-22 11:36:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'le-trek.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27238675176157413149830687746262472406930200217095328106808146736368943789519455882515958494066738164420188449808142877399630610424813415114943920689105867589664878325145538833266738395082201429750232913151435521606758410028013839529723883935680764950548141246120239647864276982008047837899653664748005418285025591966473228314414026818377912672329449655031788552248228525116057673463297436240591437024879162612241601731184310349721755326583242435214958151931712472607852191125087428709298803180914100149829986432280095151065524696677348818275218339415976661922012998654658308585217046405478396258073967081539864801181 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 25b78c10df651645298395a28853d7cb8f15114b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'le-trek.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'le-trek.petitsbonheurs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.le-trek.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.le-trek.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.le-trek.petitsbonheurs.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000168759040510000040300463044022053c7bf92f0d80803d30510a00a3a9e2e0e433e78809d91aa4884c65b13d349f3022073434e44bf998f053ac48b2257875a89795df233af1b052c8f929dff45b08893007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016875904048000004030047304502207b90e7753cf04c52193045866083c164955f3602fad9bfc3f43f62f59caf2cbd022100a27488e583cb9a1e2e4fbdfb3b4dbe37c6ccfd6563657709193781fcbd2eb593 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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