www.winkeltje.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:49:0f:68:2f:7b:32:20:20:85:0a:b6:bd:3f:0f:71:e7:b2 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.winkeltje.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:49:0f:68:2f:7b:32:20:20:85:0a:b6:bd:3f:0f:71:e7:b2Serial Number (int): 286197949962353137583435203924832753412018
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3d:e4:1b:f8:47:14:76:d3:08:77:e5:8f:a2:80:92:cd:ba:8f:eb:8d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): d1:81:10:cb:f7:2c:62:16:b3:74:03:a6:7b:1f:5a:4d:b1:41:27:f3
Fingerprint (sha256): 6c:a4:71:09:fe:b8:26:86:90:a0:7e:89:b8:c6:82:05:86:11:98:77:5d:49:bb:b0:09:8d:84:cf:ed:4e:62:d3
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.winkeltje.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.winkeltje.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.winkeltje.com
Other certificates including the domain name winkeltje.com
(limited to 100 certificates)
winkeltje.com
www.winkeltje.com
www.winkeltje.com
duilio.org
winkeltje.com
threlkeld.boston
www.winkeltje.com
rossella.org
www.winkeltje.com
winkeltje.com
www.winkeltje.com
topsoilsacramento.com
cafeteando.com
www.droneagriservice.com
winkeltje.com
darija.bible
www.winkeltje.com
winkeltje.com
www.winkeltje.com
winkeltje.com
winkeltje.com
695.me
winkeltje.com
www.winkeltje.com
www.winkeltje.com
duilio.org
winkeltje.com
threlkeld.boston
www.winkeltje.com
rossella.org
www.winkeltje.com
winkeltje.com
www.winkeltje.com
topsoilsacramento.com
cafeteando.com
www.droneagriservice.com
winkeltje.com
darija.bible
www.winkeltje.com
winkeltje.com
www.winkeltje.com
winkeltje.com
winkeltje.com
695.me
winkeltje.com
Certificate
The complete raw certificate details for www.winkeltje.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWDCCBUCgAwIBAgISA0kPaC97MiAghQq2vT8PceeyMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMjgyMDU5MDlaFw0y MDAyMjYyMDU5MDlaMBwxGjAYBgNVBAMTEXd3dy53aW5rZWx0amUuY29tMIICIjAN BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsXR/U/My6/HmeEDzubf4ytpGYzWI Xaefh/m2Mw1VOjn+T16wRwkVcLsIsYWHZMWM/qONamNybd+46wNs77q6zHk9dFDr uPYoqMvEP74MUenh343+M2SWgHEfbo4xSkEMgh9PZduUTwz42Y86UimLFysp39Pw vIX/wSjVJUGPqBQQtNjWDC25qsjXhtBoAk2Uz1qu5/yjAKgLDYvQhQTw/L6t6Pu3 C+egNtK/nd8Us5sb7QLb5skOF9qbLkzw9k7XB20GnyfUQIXvVGUWYMAYEvuaDZIi lFjlIRb58OzA6F9t1wt1SAwGR00t5hOhnOXmEkzY5MOudxBMYi1hbwefgRNRfa/8 MnZK260pmcuJAYm4SS45LYKZ+BxUN6XQdwVYsxjTKQVF7i8NYnxic2imgxznVtfk jEYuWWsobtK323K9DiXIjcww7iiiKZ6qJbtuWBVc7G6uwiS5mUNWLNW3DavSJdpI ZW5JZPV+l5D6OocHUSGu3iTUPCzGJj1pKMqeZumBzQIKxncCxOANLCMaYKHPkDA7 +GSnDYle8rfIgbymTiQCSt65ogt5iTJ2eGZ8Crt5vaNkhxTaAQjeiyl1cmiwbesg QW3AmRbE9zJ80C6HohafrvOK2DrpFS/s7QYFEgC1Z4zp0/KSZssPZMMuqCIUTowA 9FyH5xEeE5odoKcCAwEAAaOCAmQwggJgMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU PeQb+EcUdtMId+WPooCSzbqP640wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl 7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5p bnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5p bnQteDMubGV0c2VuY3J5cHQub3JnLzAcBgNVHREEFTATghF3d3cud2lua2VsdGpl LmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsG AQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQIGCisGAQQB1nkC BAIEgfMEgfAA7gB1APCVpFnyANGCQBAtL5OIjq1L/h1H45nh0DSmsKiqjrJzAAAB brQGaBkAAAQDAEYwRAIgMkYSAt7HMiLMRZeNwUAFreuamwR2oOWeMLQJKNs0BtkC IAYXUOi7WFZQJC0Qs2k7nyTpvmVdEcEloW5IOShyNuyZAHUAsh4FzIuizYogTodm +Su5iiUgZ2va+nDnsklTLe+LkF4AAAFutAZoEwAABAMARjBEAiAfiDvNjt2snYYm A0Jgpez+TMbcBkKCoua43mCxF6l+nAIgDBSZ9gKYODhH/88PKgGrGTS4hsITNWEN mHuYDfHCLQwwDQYJKoZIhvcNAQELBQADggEBAAWctjVAK3v8eltuECNMUQGO6lrE ygVHwptacq8MjNnxDT4uAUoGoOcUp8NDBo8xhDnYlBT1igEDpNBFkaxulGu3s5Rt nBfVUAwUg69WMQe6JcHIag1TPKMUYf3BlSVxTvogi7gTQ7Lg76q91pf6IjJftwJn v8vhlXM59NkwPuWj0SMDnsJFllXSWFhiCiJrQ7mkf0u7TT4/9JqwnHBRalZg60xZ IZLtxFuOapKs4JwtxuW4MhA7bFBnP2hzsmr6UQlO3cTqQFt+Kjk39CUj2NMQz52v ZRy63ezKBcT1oeEL4oLm3xgBp0o4lYAcBx4ZcRUHtIRZI+i9Re7b20bshys= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsXR/U/My6/HmeEDzubf4 ytpGYzWIXaefh/m2Mw1VOjn+T16wRwkVcLsIsYWHZMWM/qONamNybd+46wNs77q6 zHk9dFDruPYoqMvEP74MUenh343+M2SWgHEfbo4xSkEMgh9PZduUTwz42Y86UimL Fysp39PwvIX/wSjVJUGPqBQQtNjWDC25qsjXhtBoAk2Uz1qu5/yjAKgLDYvQhQTw /L6t6Pu3C+egNtK/nd8Us5sb7QLb5skOF9qbLkzw9k7XB20GnyfUQIXvVGUWYMAY EvuaDZIilFjlIRb58OzA6F9t1wt1SAwGR00t5hOhnOXmEkzY5MOudxBMYi1hbwef gRNRfa/8MnZK260pmcuJAYm4SS45LYKZ+BxUN6XQdwVYsxjTKQVF7i8NYnxic2im gxznVtfkjEYuWWsobtK323K9DiXIjcww7iiiKZ6qJbtuWBVc7G6uwiS5mUNWLNW3 DavSJdpIZW5JZPV+l5D6OocHUSGu3iTUPCzGJj1pKMqeZumBzQIKxncCxOANLCMa YKHPkDA7+GSnDYle8rfIgbymTiQCSt65ogt5iTJ2eGZ8Crt5vaNkhxTaAQjeiyl1 cmiwbesgQW3AmRbE9zJ80C6HohafrvOK2DrpFS/s7QYFEgC1Z4zp0/KSZssPZMMu qCIUTowA9FyH5xEeE5odoKcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 286197949962353137583435203924832753412018 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-28 20:59:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-26 20:59:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.winkeltje.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 723953514976038624334751514010088370386551200286120092349854689940121605698527670477103587523918826574243086841692916915313321093735248845765353088102852606166699264451571476474302771363796357081523781402225985800033768547633657227000844633946676958937041172550929965435050238252335111905494469190790180181805264020955190911542288265059841709813625167691986049802257812990955173633123515920002304776043827618026444618077328819715534553633284494173132362969934785549991764932141719078202793404064138954829472267119585025441833250138304325173097492346804516975016039243605523424587411885431005560109352368310700453128917412081428934313438020164666925873813347475815081169840290552687424889189940036791736301366883605135031927704376858286838473296049304708381735807240176855413835443040537725536236381309311382813204488000388062078000274974146642586879332848713691387738976103418529558987802399253997121481006831234122789036528786070393710306980838817132675764523984092777414614246481074915856663212040673299669443839722775565336186520024937631315144937716962131559125020788570646808610052321674044292173341626777038188992385044404000594568920385109623764216801709024872088119732869240355216232361755918352442488508224245181695154561191 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3de41bf8471476d30877e58fa28092cdba8feb8d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.winkeltje.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016eb40668190000040300463044022032461202dec73222cc45978dc14005adeb9a9b0476a0e59e30b40928db3406d90220061750e8bb585650242d10b3693b9f24e9be655d11c125a16e4839287236ec99007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016eb4066813000004030046304402201f883bcd8eddac9d8626034260a5ecfe4cc6dc064282a2e6b8de60b117a97e9c02200c1499f60298383847ffcf0f2a01ab1934b886c21335610d987b980df1c22d0c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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