www.newyorkcentralpark.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:da:5a:b9:68:16:bd:db:7f:7e:e9:53:6c:0e:63:2b:9c:7e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.newyorkcentralpark.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:da:5a:b9:68:16:bd:db:7f:7e:e9:53:6c:0e:63:2b:9c:7eSerial Number (int): 422751292921517419371963798525227899264126
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 41:21:d9:b9:a0:c8:84:16:e9:ef:75:53:c5:9f:85:e0:9d:2d:e7:8e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 04:5d:c8:98:d7:3e:ee:67:e7:a8:52:5c:32:54:80:89:4d:59:44:11
Fingerprint (sha256): 7c:5d:08:56:b7:53:d1:bc:3a:64:2f:a6:e9:e1:bb:06:c8:05:0a:c0:58:c4:9e:78:75:3c:2c:fa:64:09:f0:cc
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.newyorkcentralpark.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.newyorkcentralpark.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.newyorkcentralpark.com
Other certificates including the domain name newyorkcentralpark.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.newyorkcentralpark.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGazCCBVOgAwIBAgISBNpauWgWvdt/fulTbA5jK5x+MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMDMxNjQ0MzRaFw0y MDAzMDIxNjQ0MzRaMCUxIzAhBgNVBAMTGnd3dy5uZXd5b3JrY2VudHJhbHBhcmsu Y29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2OagMkkhecSj0+u0 2CmexQE7RS4xU2ammuZRrJ4hew5uql0Ok6OjqxZ5kzHCR6xHtlbH8Jiza2Akp3d0 MUADHEK+XKGTyVdDupDTyBHqz5Tegzyb9We4yQHv/eX49OphQ9XYX0W+ZpPrRryt r5wKQqLGxAUFe9hO7pHsZR2Z6vOWbetbzUJzwcQppSmojLSpJCdTCs3CUYxGOGAX 1/JyNmAhIxvJiiSbSyAfErUgQRG6iJXsQV+LJQ3a9OoHKT3n5zlLNaMWfapmQEE5 WKD77kBDZYnZ2HBYEUUwOWu0VTfuAahI/Xd3V9uNqKVwm8Gd4cxUbefFAAfwkSds EYjf9XmBc9U/vRemtaAFn57Oqm0ExNisgSziI4Wq7oymUQCec5O9hep2iHzt+o2H FxV7BlNUehbNiiIrwg1Hxru4uyjFI+puMW5p0ci4evoi25RDbq0iruTqQbU/L3n9 h/Q9GoE1sz31FqjGFo7OtKoizweCsIqFsg5gAEXdc1lIg/eP/8iJGzmDOc0m0YyK WulgsjcUV6qPRnR9bUIEkmJDWhPOKodCCR+VqrHoET8kvv1kVihTjApwJ5gaduyR 3yEjfEnlc48PD/Bnxw7DO391fXdksevEUS+FieVzKgZ70MwwhUjGRoOMRrJS+OAN FjuLo6oU67Icx7WfjQmbKGzgcxMCAwEAAaOCAm4wggJqMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQUQSHZuaDIhBbp73VTxZ+F4J0t544wHwYDVR0jBBgwFoAUqEpqYwR9 3brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRw Oi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRw Oi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzAlBgNVHREEHjAcghp3d3cu bmV3eW9ya2NlbnRyYWxwYXJrLmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3Bgsr BgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0 Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AAe3XBvlfWj/8bDGHSMVx7rm V3xXlLdq7rxhOhpp06IcAAABbszdID8AAAQDAEYwRAIgb3HvCUjnEBBuKNWpCGxw CRYgVBthkTTtdkL+qOB4pJYCIAVGYgZ01rrCBJafz4nb/iXNYIBDH6bSxeqpBH3k eZOhAHYAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFuzN0hNQAA BAMARzBFAiEA/sL10OH9bvreYYpn7wcmtNoE3xEh5s+mj4C9Kte3C/gCIFzZx7Py gL/aIi0ckMa90kQHnCBigpIFswpkTHOhzGPcMA0GCSqGSIb3DQEBCwUAA4IBAQAw 6knKZyUStqe5F2HQXJZal/2ccMdVU0BWpOhFypk/fhRTT27bx/kJM9rNIHjqq4yu xJUiOJ7/RwQ96SBlTWb/fInp0a9PR9oREry5Cqij4onESREZTWXXNUsKtZ0AFr/x zgKGruxVw7ltIowYa0gRzZXnbxBgOxbAi17UxKx4HH0QV7C3zYO8XW0pQj++bz/f KFOsfPLHeqaVSVJtdIoPQSSG/eIWb22mQkbEwyFOK5b/udohnme8zD4z3ZQ8PEHW fJEQsm3es8v0DvMlfByMhzhjtJb6XCurOtDFsDBsAodPkFj8MwtBbjur00TK24r+ EwlHD0s8C1+lhzogthdS -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2OagMkkhecSj0+u02Cme xQE7RS4xU2ammuZRrJ4hew5uql0Ok6OjqxZ5kzHCR6xHtlbH8Jiza2Akp3d0MUAD HEK+XKGTyVdDupDTyBHqz5Tegzyb9We4yQHv/eX49OphQ9XYX0W+ZpPrRrytr5wK QqLGxAUFe9hO7pHsZR2Z6vOWbetbzUJzwcQppSmojLSpJCdTCs3CUYxGOGAX1/Jy NmAhIxvJiiSbSyAfErUgQRG6iJXsQV+LJQ3a9OoHKT3n5zlLNaMWfapmQEE5WKD7 7kBDZYnZ2HBYEUUwOWu0VTfuAahI/Xd3V9uNqKVwm8Gd4cxUbefFAAfwkSdsEYjf 9XmBc9U/vRemtaAFn57Oqm0ExNisgSziI4Wq7oymUQCec5O9hep2iHzt+o2HFxV7 BlNUehbNiiIrwg1Hxru4uyjFI+puMW5p0ci4evoi25RDbq0iruTqQbU/L3n9h/Q9 GoE1sz31FqjGFo7OtKoizweCsIqFsg5gAEXdc1lIg/eP/8iJGzmDOc0m0YyKWulg sjcUV6qPRnR9bUIEkmJDWhPOKodCCR+VqrHoET8kvv1kVihTjApwJ5gaduyR3yEj fEnlc48PD/Bnxw7DO391fXdksevEUS+FieVzKgZ70MwwhUjGRoOMRrJS+OANFjuL o6oU67Icx7WfjQmbKGzgcxMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 422751292921517419371963798525227899264126 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-03 16:44:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-02 16:44:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.newyorkcentralpark.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 884878396205985912162586910493992646574778518468356552599154551241436929997943039813774458866384337108196112884893548859711365103989058088007526925863586446989339728912380483411793543309383886515971057470420340173493005545074863368574207988737326505271466749723365617316286840019658569166881029214106901874378923306779461707143412811208305509857235951154468083509247761423983579620339584937907781211692210577681908530323809461523947355460843230403271874712817761708917073216071322621906352723912172104653800957092934356746383273468403768229507509777337346010357368359110214666815394358121596268797308986829011772921340745906873862112141405703055541242402315811123521731370630774949583034143768988331286893883531063724748925459905169785287242550840193344332021584454432159247883511120458536349355302093851252043785118075434195090788585878145074158477782229109844535853650412232715624835914896470446940758734045974051600527836930302677918824219737545423214093945865002742603563890830797640415032729173447048476237364348834041687323561553803673162900117911861260524971457651870903112182339015135418178680173578144935926018786739307687811853213713005516050985708671825504254259357223202593708233816692312939520350938659067159736582435603 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4121d9b9a0c88416e9ef7553c59f85e09d2de78e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.newyorkcentralpark.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016eccdd203f000004030046304402206f71ef0948e710106e28d5a9086c70091620541b619134ed7642fea8e078a49602200546620674d6bac204969fcf89dbfe25cd6080431fa6d2c5eaa9047de47993a10076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016eccdd21350000040300473045022100fec2f5d0e1fd6efade618a67ef0726b4da04df1121e6cfa68f80bd2ad7b70bf802205cd9c7b3f280bfda222d1c90c6bdd244079c2062829205b30a644c73a1cc63dc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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