www.patriotcityusa.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:23:9c:65:a3:3c:61:c5:da:93:21:f7:0f:28:1e:57:8a:d7 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.patriotcityusa.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:23:9c:65:a3:3c:61:c5:da:93:21:f7:0f:28:1e:57:8a:d7
Serial Number (int): 273454627937655459437460571247876618291927
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 6c:56:0f:b2:09:e1:2d:b7:02:cc:2e:43:c3:1c:02:c8:98:c3:b0:ca
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): e9:cf:03:53:33:57:3d:61:44:ee:05:83:c3:6d:6e:2b:b1:42:d5:17
Fingerprint (sha256): 7c:4f:bf:05:56:6c:2e:62:4d:13:78:47:49:16:18:b4:46:6b:3e:b7:2d:9b:46:bf:00:39:84:e3:fe:ce:d1:e4

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.patriotcityusa.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.patriotcityusa.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.patriotcityusa.com

Other certificates including the domain name patriotcityusa.com

(limited to 100 certificates)
patriotcityusa.com
patriotcityusa.com
patriotcityusa.com
patriotcityusa.com
patriotcityusa.com
www.patriotcityusa.com
www.patriotcityusa.com
patriotcityusa.com
patriotcityusa.com

Certificate

The complete raw certificate details for www.patriotcityusa.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGZDCCBUygAwIBAgISAyOcZaM8YcXakyH3DygeV4rXMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMjkyMjA3MTJaFw0y
MDA0MjgyMjA3MTJaMCExHzAdBgNVBAMTFnd3dy5wYXRyaW90Y2l0eXVzYS5jb20w
ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDGC/8iJy71RwwwhHCk+VP6
eeF47E002Rs7GpCp6sEmlmPRrTcNjXJHUIdkKK/o7EsVMaA1AOUFno4xkoVrjTN6
YleOeeVcmZ5Cv5jj8bb5uc9Xs/M/tmyYt6wOby3B+iP4xOlAP3lrWpTTA1ZWX2lZ
0UQqouwkRkeeLLvdsOjKcejiM2PiM9xGJQtZsLx1USnD317bUh1lYQciZ5kO7g7w
rrObXeuzTBox9Q7Zb3aGsbK7KDnfjojykp7CNIqNedcr+RGDtIGK4yQTvQW276YP
v399agqgTVZW4Mj0NdbS536cmh3XQM3beKLbok2etz2bnEeDodiqljTVjkrk2+Xa
ygAM8d2tGbBEWxNg2ihSTUdFGHUdWdgYFVjNeApVX03Y7tjncNU7pZrflt6tfMao
saC+iKajOxbwJjMeFlJNqLkPak4/jy5OZZfZa0mzRGHN2tUzECyuNsXuhP4tpCEv
FBpC8kvS2o6pc/e8XpoyIvDwnqnjzu44wKqZEcjRH3aMkmvpWk0jOyjJR/oTKYAj
vB6ZocU0vy7TcIRXK5cbKw3Oz1+QxBBsxpYhUeA5bKwCNCgU4+YiqRiM4OlzB/ck
3GO0tFhRrZXe8dD/qqMinU8PQUC3P2Tn2RtMdZbpAVYSxKOO7R8lWOBlgchHWsIk
cNZVNKX77cDSO7uQBNhTQQIDAQABo4ICazCCAmcwDgYDVR0PAQH/BAQDAgWgMB0G
A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud
DgQWBBRsVg+yCeEttwLMLkPDHALImMOwyjAfBgNVHSMEGDAWgBSoSmpjBH3duubR
ObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9v
Y3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9j
ZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMCEGA1UdEQQaMBiCFnd3dy5wYXRy
aW90Y2l0eXVzYS5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMB
AQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEE
BgorBgEEAdZ5AgQCBIH1BIHyAPAAdgBep3P531bA57U2SH3QSeAyepGaDIShEhKE
GHWWgXFFWAAAAW/zjv4ZAAAEAwBHMEUCID3LE0SQiTcBnsyHgjVkfJp6tUQJzpql
HiojFWt/Ap+rAiEAziQrculbHdjLZ3KXAeLazkeaHLDSQxPI34zBok7y7mEAdgAH
t1wb5X1o//Gwxh0jFce65ld8V5S3au68YToaadOiHAAAAW/zjv46AAAEAwBHMEUC
IQCWp2W89V4BXYcz5wY7st3FSk1IErCktbPBh3ucyFif0AIgPokNefG7x52BPfer
P4IEu0Pue+EdmF5PVQMl3KCfDzowDQYJKoZIhvcNAQELBQADggEBAHnnlaK4UM2u
uz6StG67M7kzI2bhuBubZ3HPifoGkpzKlR00fnIpLPo3QWHKT4px+NdJEB6+Zc5k
NRL3kKp+d66RA+5HIoZKAx+4tpH67vb7YkOiXYjXrsgIjuhfQZiK5IPK1So+GUFU
KrjCP/keGHQU+C2WuAhd7Jg22hPdw/CEbf9n267IMEG8FlJ7tApB/ah4XNigXIVM
Y3/R2ZgW/R+uMLvWzY9d8KzN+CEi5CayvboPfF4XEHoNvtj5Go6jfijOwWvKVRoa
Xj6byV69+TuD4rgN2SmcdVBzGBbQCjkzoutsmM58Y5XP3Pbw3mw17WOEnYjVf26K
BbgvmxbTwVE=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 273454627937655459437460571247876618291927
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-29 22:07:12 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-28 22:07:12 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.patriotcityusa.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 807960704838099321911622961508589103059489243773814856636214627419340437225824183517242515876890938812462881233677997147541587044488659876036769569122565946809430417648272346259574776567470199543784002759655962782287360900200096190263901882372670102119480280651199777518482225345612276089528620503968832227262525950149398664171945311184056725759890987434497605864702889938688756358152446808072402909084193261885898343742505072384898364053477222597517778699399933931967816413589531863504523245617807898226089508695227494214309680664623971700741223734293320935961710376514416073769808361138430489785007129671539373422625958512857038493107707193668676554063243512204919665784459276223624343272020379694701426695866543303279627218693798197320106861175720040129813880568464275130896428174480602889883215635573694301562913928154053388277242733420374659143706358817086053136251206823875884387366491190527927831234919683485456675321485668847859038129467071224978281060923368787098198254561299348635747420269564119645895203610422797310788936375970101437861108025676471741424608398495190147304807234572213395189270112046468966657349193763658327293590968661273189907970787800596420986230861921810008631138344837110920385744950036711282182738753
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6c560fb209e12db702cc2e43c31c02c898c3b0ca
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.patriotcityusa.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016ff38efe19000004030047304502203dcb1344908937019ecc878235647c9a7ab54409ce9aa51e2a23156b7f029fab022100ce242b72e95b1dd8cb67729701e2dace479a1cb0d24313c8df8cc1a24ef2ee6100760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016ff38efe3a000004030047304502210096a765bcf55e015d8733e7063bb2ddc54a4d4812b0a4b5b3c1877b9cc8589fd002203e890d79f1bbc79d813df7ab3f8204bb43ee7be11d985e4f550325dca09f0f3a
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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