www.thermoglas.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:5b:ba:fc:f6:a9:74:be:8c:91:4a:02:8d:72:03:94:dd:80 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.thermoglas.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:5b:ba:fc:f6:a9:74:be:8c:91:4a:02:8d:72:03:94:dd:80Serial Number (int): 292551103054008937828039304206891814804864
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 2a:56:10:c1:cf:e7:da:04:5b:23:23:f8:7b:fb:e8:70:8e:6f:30:3a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 30:5c:39:ba:c9:45:4a:56:fd:0f:0b:1a:db:0b:7f:42:14:53:38:a1
Fingerprint (sha256): 85:72:84:31:d5:3f:0b:26:b9:04:ae:bd:c9:54:01:87:fd:37:d3:97:bd:7a:98:cb:44:ca:7b:d1:10:17:37:49
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.thermoglas.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.thermoglas.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.thermoglas.com
Other certificates including the domain name thermoglas.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.thermoglas.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWzCCBUOgAwIBAgISA1u6/PapdL6MkUoCjXIDlN2AMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTIwNDI3MThaFw0y MDAxMTAwNDI3MThaMB0xGzAZBgNVBAMTEnd3dy50aGVybW9nbGFzLmNvbTCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAOXKjUose/3mE+uBJoiWF77JvFc7 y5OQ8q8/tfDuhSrTFYZZ0GK0L1GtpdoUAfswik/0m8ObHA13FmIDtJs+EPKiAHvx GVcCCIPNoX5r/HDzfop+kvu41ZsYNku+5IZRtgGgS3gbDvgYnUIFGrRR4tXa/t+y x3icxpHnfJuAFJGlb1nglI+Fa28ah8kqcntNqsEoKqIhZ/AB/BHIi3XmPHX/tgaN qaVCMaVyoPObR1zJiRT6M4W8POEi/ERNeUygiKosuGn/QBcaHtx3kVEPTm9tBd7k 2LhzeoYfKhzs9gtQNcgkP0K/vGEKS74MF+eMJ+9GlIklFRz/j8dtgeBvZTUzJW5V 7z7euzqsVEdp6N5Q5WJF5/SYi3QJL0AM5RPSMlhunB6gtGEyZV+gjM+gIZKNRIRe wjnjd40U4aoh73N02qSw5ZNVLfW/GbPUWKzTIFHcKclvTEHLYeEAMCqUcNbwoFU8 vOxVxYSBHWLzOaVGivzBy23vtcVjCp+/MVnuheDQ6rY1mnt8b1QkNSShXeB4rC7k VqK0x+/3oIDn7nP5UK1n+FNuBzWnYGyVHA8Knk6tSGCEqTFE0w41ipVezdRytTsI YIxgg4g2xuz1zf0GTvLHO7NeMrmHA64vkQPMasE4CQruNMkQS9r2QH0CqViBcPSQ 3eCureSMENEJg46RAgMBAAGjggJmMIICYjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FCpWEMHP59oEWyMj+Hv76HCObzA6MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISd3d3LnRoZXJtb2ds YXMuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHW eQIEAgSB9ASB8QDvAHYAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH9HgA AAFtvm9zegAABAMARzBFAiEA2RaH6hJPHZgWFp5nMsXANWku2RQyvosA05DXIlK5 zBQCIBVJ3QqKoNEnwGU3y82n55QMvNqGjXogseo6M0Bnnnd/AHUAb1N2rDHwMRnY mQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFtvm9z9AAABAMARjBEAiAba+0+fyki bhBhwl7+3Pb7jWXZAAcvGRjFHtrvV8H/RgIgU+ujzieKB4FG6L783u3Z0xUWEfX8 VR2KXSWSUmGBSPkwDQYJKoZIhvcNAQELBQADggEBADEW9HxFmurjJsKUQEXcbiA0 EFZiRW/fTlXEP7I3ayWfAV3q7oexovxX4CYWsDkw5mK9DU3v7xuEQ9s+6MAgH5Ln iH5d/az2wK5RgbUsDCWEoOMUOqBcxbecaVR6uamxyG6aBdhXZzRbOcWVjm2TMRVh 1w6WqjM0nquPWLo5TlKu85GJTy+FYZwV4E3bgRWGWTfcjRWZRQ+wdXUVzIOG/RWi ZdnFLeKiGzNsuwp0+vXfvGdrp/bGhpYAQNqcXml+WaEyxwcoAQeFrvf8+tJODKok bs32waLzhS+axRv+0DZWbssoDZh1fwJz6GPYB0MJpW+Xfs5oMXwEhH1NBhi35fw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA5cqNSix7/eYT64EmiJYX vsm8VzvLk5Dyrz+18O6FKtMVhlnQYrQvUa2l2hQB+zCKT/Sbw5scDXcWYgO0mz4Q 8qIAe/EZVwIIg82hfmv8cPN+in6S+7jVmxg2S77khlG2AaBLeBsO+BidQgUatFHi 1dr+37LHeJzGked8m4AUkaVvWeCUj4VrbxqHySpye02qwSgqoiFn8AH8EciLdeY8 df+2Bo2ppUIxpXKg85tHXMmJFPozhbw84SL8RE15TKCIqiy4af9AFxoe3HeRUQ9O b20F3uTYuHN6hh8qHOz2C1A1yCQ/Qr+8YQpLvgwX54wn70aUiSUVHP+Px22B4G9l NTMlblXvPt67OqxUR2no3lDlYkXn9JiLdAkvQAzlE9IyWG6cHqC0YTJlX6CMz6Ah ko1EhF7COeN3jRThqiHvc3TapLDlk1Ut9b8Zs9RYrNMgUdwpyW9MQcth4QAwKpRw 1vCgVTy87FXFhIEdYvM5pUaK/MHLbe+1xWMKn78xWe6F4NDqtjWae3xvVCQ1JKFd 4HisLuRWorTH7/eggOfuc/lQrWf4U24HNadgbJUcDwqeTq1IYISpMUTTDjWKlV7N 1HK1OwhgjGCDiDbG7PXN/QZO8sc7s14yuYcDri+RA8xqwTgJCu40yRBL2vZAfQKp WIFw9JDd4K6t5IwQ0QmDjpECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 292551103054008937828039304206891814804864 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-12 04:27:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-10 04:27:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.thermoglas.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 937466381070937851080363447078642667981182311056578404634658392594780476712145670253960052465026681148290684092796786620992191222477582260495116887492912677442320209843015846756956584403066821120063774765980066910216462736872892976344874506049894768449795872004392207817404502340134393181985264232351266348535733580936368038447746359378755064300635120430905840942468275586815276998668753602962526644601824211276402326751266139377220904774593109135601734127778277830897113358495733506364902778454997770039817239314927641133851216845482453380461262007901204267632001624507946703801798559283643642174827614816757147666870183049997776093609563914466865221635740112552705778310927802785046728640389366023319708935269380255081279069190367045925378383997389897233919800865830986828289841964406185486479101125710722041194443594650139576292588083352150730236244305627212250800293960151139777456436542787524632845427368506543026215260628879044568719409952128494504981452090605168300916622148096364863805942010817288908310940315667545362793985830612470085562673268115848099442536503839231238755559908013785231862933946542562996944136522748425445997720607578363213736644365234073411378341496618272151607226880978508342377474137394177062681677457 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2a5610c1cfe7da045b2323f87bfbe8708e6f303a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thermoglas.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016dbe6f737a0000040300473045022100d91687ea124f1d9816169e6732c5c035692ed91432be8b00d390d72252b9cc1402201549dd0a8aa0d127c06537cbcda7e7940cbcda868d7a20b1ea3a3340679e777f0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016dbe6f73f4000004030046304402201b6bed3e7f29226e1061c25efedcf6fb8d65d900072f1918c51edaef57c1ff46022053eba3ce278a078146e8befcdeedd9d3151611f5fc551d8a5d259252618148f9 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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