www.swanson.com
Issued by R3
About this certificate
This digital certificate with serial number 03:43:f1:d2:3b:45:67:e7:dd:51:c3:89:d1:3d:2f:5a:0f:f7 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.swanson.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:43:f1:d2:3b:45:67:e7:dd:51:c3:89:d1:3d:2f:5a:0f:f7Serial Number (int): 284457211910469141123049598946675512709111
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: e7:ec:ad:4e:e8:f2:37:0e:1d:58:e7:b6:3e:5b:55:54:70:d1:bc:ed
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 97:79:ec:b0:bc:22:bb:3b:3c:75:e4:b3:1a:69:cf:87:67:56:f7:dc
Fingerprint (sha256): 70:ba:19:90:d7:2a:53:8e:27:0f:23:b7:17:11:5b:a6:3e:4d:19:fb:f9:2c:ff:86:eb:06:1a:23:63:22:b4:c2
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.swanson.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.swanson.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.swanson.com
Other certificates including the domain name swanson.com
(limited to 100 certificates)
swanson.com
www.swanson.com
swanson.com
www.swanson.com
swanson.com
mi.swanson.com
swanson.com
swanson.com
swanson.com
medialibrary.swanson.com
www.swanson.com
www.swanson.com
www.swanson.com
www.swanson.com
swanson.com
www.swanson.com
swanson.com
www.swanson.com
swanson.com
www.swanson.com
www.swanson.com
www.swanson.com
swanson.com
www.swanson.com
swanson.com
swanson.com
swanson.com
swanson.com
www.swanson.com
swanson.com
www.swanson.com
swanson.com
mi.swanson.com
swanson.com
swanson.com
swanson.com
medialibrary.swanson.com
www.swanson.com
www.swanson.com
www.swanson.com
www.swanson.com
swanson.com
www.swanson.com
swanson.com
www.swanson.com
swanson.com
www.swanson.com
www.swanson.com
www.swanson.com
swanson.com
www.swanson.com
swanson.com
swanson.com
swanson.com
swanson.com
Certificate
The complete raw certificate details for www.swanson.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGJDCCBQygAwIBAgISA0Px0jtFZ+fdUcOJ0T0vWg/3MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzAzMTkwNzU4NDZaFw0yMzA2MTcwNzU4NDVaMBoxGDAWBgNVBAMT D3d3dy5zd2Fuc29uLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB AM7FRUFWVDnJmQQ9BFBfo19ylIfs7Ws+VmYIcBfzqeuufiZxQ+9TmqmetgDz0LEH Us91FeYx3VVh4MURjxl+XNADvXOiLeV5b9D12ePI3I4anREim8DvGfF2BjcYOR2X EYENQo6PhJix/ZEKaHBsULPMIvtxlJnroAFBy/YINKWTIkLKlzDFXuFxzF1qmrj4 3lIlAX0IT+bkZL8RK7PNEBtFaZL6VygUFQXUiZYs4D2cVy1LYEbQJeobuy4ZRJxD b9dTCn7DceUY3eHjlrX8kae6wWwnVtkC8G1agxcIZ7g6PZpiyL611AFPkN3H4Pka sPARScvoJGvh5yqpFzA16MYILv8j5o9Uy4q9tJb9cC0A0I8dZd+VaQQOUIl1d3eI aLplKA+Je/7/6vxFlONBCfnlJPo0mThfguQiOnUnWTP8pWnjwIOvYnxV4IAqBzmV srTzoSmkjCzjq+70jlf7TFa3lPxHadrx52AWUmFRB+dtsUt8fy9ovLeDeHPBDyC/ duLkzwUmQD60eN8ONn8lpCO9ZaMdNbI6VzOKPYqvLEoL0CGrh7NH5V/Q1vg1S5tU xw4R/0d3wqfb0Ui+Muc4eFN7el4xcSQddGhslSb6YdJVsToM42a4WcMj7h4XkWLX PLgiQWKnx4JhylMa6Tae+3bfo9oOIZDxuGNcIpxI0HdxAgMBAAGjggJKMIICRjAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFOfsrU7o8jcOHVjntj5bVVRw0bztMB8GA1Ud IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw Oi8vcjMuaS5sZW5jci5vcmcvMBoGA1UdEQQTMBGCD3d3dy5zd2Fuc29uLmNvbTBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUE gfIA8AB2ALc++yTfnE26dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAABhvkXuXgA AAQDAEcwRQIhALUca/KUnJNEu+aZTNnfbEoswz1889HK/LWCtERB4MZdAiBMLCUm ab4nej2tGsjoRHbKvOqbgjvbq0iPkitHzwi7XQB2AHoyjFTYty22IOo44FIe6YQW cDIThU070ivBOlejUutSAAABhvkXuYUAAAQDAEcwRQIga8+Ke02tqgeY0Kh+YJtf itap49ohefrBqAK3aMUR24ICIQDB3AJsqjXjYcIV8D1Ik7dq4Fujs39F2dKwk6L6 aiqVCjANBgkqhkiG9w0BAQsFAAOCAQEAXml6V13uVn2/WnEj5OY34z+RCuZVJcx+ XMlEJLazslcPJdtEFlRX/b/h56ytEJVbvi3jiF3yiiZdKPyyvwZlhoLAVNauogJE /FfWaxHQqHRw+t5xzwgHLFUOYFkmjI1anFpq5WcDr1JOxBZWWjP8Q03IfUMY0buH /GpG0Htg1CYXtjzohNHBppEUn92F4OtL+c79oEALVbYTc5ziH28EEO10mf6WttpA 1D/EFwKiYqSwQHRpfmrqwe81fBKFXIp5b1cnCFwjCNSvd4NAshqoBpF/zowQpw2A dojkZ8QRPDA8buwEXlGS8bD1lsjtYUXhjzMkL/ePKOXkYHlt/oEkwQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzsVFQVZUOcmZBD0EUF+j X3KUh+ztaz5WZghwF/Op665+JnFD71OaqZ62APPQsQdSz3UV5jHdVWHgxRGPGX5c 0AO9c6It5Xlv0PXZ48jcjhqdESKbwO8Z8XYGNxg5HZcRgQ1Cjo+EmLH9kQpocGxQ s8wi+3GUmeugAUHL9gg0pZMiQsqXMMVe4XHMXWqauPjeUiUBfQhP5uRkvxErs80Q G0VpkvpXKBQVBdSJlizgPZxXLUtgRtAl6hu7LhlEnENv11MKfsNx5Rjd4eOWtfyR p7rBbCdW2QLwbVqDFwhnuDo9mmLIvrXUAU+Q3cfg+Rqw8BFJy+gka+HnKqkXMDXo xggu/yPmj1TLir20lv1wLQDQjx1l35VpBA5QiXV3d4houmUoD4l7/v/q/EWU40EJ +eUk+jSZOF+C5CI6dSdZM/ylaePAg69ifFXggCoHOZWytPOhKaSMLOOr7vSOV/tM VreU/Edp2vHnYBZSYVEH522xS3x/L2i8t4N4c8EPIL924uTPBSZAPrR43w42fyWk I71lox01sjpXM4o9iq8sSgvQIauHs0flX9DW+DVLm1THDhH/R3fCp9vRSL4y5zh4 U3t6XjFxJB10aGyVJvph0lWxOgzjZrhZwyPuHheRYtc8uCJBYqfHgmHKUxrpNp77 dt+j2g4hkPG4Y1winEjQd3ECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 284457211910469141123049598946675512709111 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-19 07:58:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-17 07:58:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.swanson.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 843550402778690175106780587814046307098016749798534756437822080243648707485242901793411676326750801268317456053404110538769650587023385824006711193845449727375152568541476152802148947978510355974031706076495121618155255610952582648133559228162206198863323432895957989842785993268080426430829123519949488235969308292343004031197468007379109652816957519393081785246227725493880368429327911412584371248611348681555136127586079614598407905415236400880665689195955749831786777189610442681129318440096928748689998635652119873095768529844346777550883320752323984147195135747853369918996389194574206406298557149614156272014124499192960001880332146520469923152354165765929384808610419920196799353763108715963290733411680369657248268053325637769973812846781671101048205501384078416967084538359267289969869504402774593870791658603314228148922881315907894667898960653263592478328665692196515898172242347990535350653126020346823176085952956134345672781853680225304833232761956447699450792319046674536048094650701553336958995183851146152944626010206448662043352783525726171381161402666666830066027280804230917454946231734698422165389026893349469024928043572164121901626728477881667287802883125826840069122381280076020203484099963894083767877269361 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e7ecad4ee8f2370e1d58e7b63e5b555470d1bced . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.swanson.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000186f917b9780000040300473045022100b51c6bf2949c9344bbe6994cd9df6c4a2cc33d7cf3d1cafcb582b44441e0c65d02204c2c252669be277a3dad1ac8e84476cabcea9b823bdbab488f922b47cf08bb5d0076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000186f917b985000004030047304502206bcf8a7b4dadaa0798d0a87e609b5f8ad6a9e3da2179fac1a802b768c511db82022100c1dc026caa35e361c215f03d4893b76ae05ba3b37f45d9d2b093a2fa6a2a950a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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