benefitsofwine.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:12:d5:83:d3:28:79:ca:bf:55:f8:70:35:d5:e1:53:fb:b4 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=benefitsofwine.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:12:d5:83:d3:28:79:ca:bf:55:f8:70:35:d5:e1:53:fb:b4Serial Number (int): 267745750436643533089395141047328494058420
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 5f:0b:c5:13:24:f0:cf:0e:3f:69:7f:81:1d:39:ce:5d:9d:f0:ee:4b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): cc:cc:6e:1e:cf:87:65:50:0b:3a:55:d3:37:a7:d6:07:42:69:e5:0c
Fingerprint (sha256): 86:1b:c3:08:61:fe:94:7c:ab:84:91:e9:34:ef:10:36:16:d6:73:23:b2:ec:d5:a3:51:bd:ed:9f:4b:11:ee:b3
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate benefitsofwine.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for benefitsofwine.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
benefitsofwine.com
Other certificates including the domain name benefitsofwine.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for benefitsofwine.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWzCCBUOgAwIBAgISAxLVg9Moecq/VfhwNdXhU/u0MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMTUwMDQ3MjFaFw0y MDAyMTMwMDQ3MjFaMB0xGzAZBgNVBAMTEmJlbmVmaXRzb2Z3aW5lLmNvbTCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAN51dT0DkbrzRTqF6LP9Z/N7N1F8 I5BDEbWkZ/9UNlzUHRGbJs2+1WWZj45ZEvjNSxFl4jqLl4hdz3AoN61bX1B1cxLX 0zzcnut7VJxmjb+VCmH+C0hQ1dwNghesDMIXRaFa3NG53MVLSbuKbsvNeRDgwnXb W6Idj+6bFa1hUruyLtpCjivKJAU9/HoEcwS7M/84s63TkOVqXO0hhm+s2rllp7dq hOR97IcBbeTVgeXhp45o9NMjQb1m4at73wA861iDL0/D5BzWb99hI02UoHA3M3H+ qNMyqBJAq/gtxD7dAaDlSP6mAkMieFlxw9bum8mlIHXHqM9rapgbD0luFqEqsmd2 lZTA+JGgX3/5vEE4X8D1fkkpa9oDpWQAdEzKcZM7a5kMusRPb6oyxGvGuOD25nvs 6+IPSoKX0EbXL5KNjYExy5vJLkZZone+MkO2XhyHN4CljU9V9Wd8ZQiq4oW1lOzf iYpSKY3/cZCiNoBZbzK18CcQRqN9C6uY+y3EJw6sIyV4MoPVBQs0X1BcJUiADv3t uL0x5vd8Hr6+1pmJvJagY6WlA3yx+kWa48dvTssx71YZjh5gxXgHdsh9rj03Ov8m tx6viDJCbN0SunLJNZ2O7ZMBzrhfTIdgDlkVhMGJnqhrDQWFxwL1qjS4Omtav9Rb ACvWXZiyi1Cjl241AgMBAAGjggJmMIICYjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FF8LxRMk8M8OP2l/gR05zl2d8O5LMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISYmVuZWZpdHNvZndp bmUuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHW eQIEAgSB9ASB8QDvAHUA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMA AAFubL5PDQAABAMARjBEAiBjf7Tfh4j+7nmWtdnNUbHWp+TW+kkyxY2mxvnFZkAn xAIgf1UsBaG7XoG17pMMJBWNYVqa6/oCCjQOLCkAkaKKwGUAdgAHt1wb5X1o//Gw xh0jFce65ld8V5S3au68YToaadOiHAAAAW5svk89AAAEAwBHMEUCIFUnMN2xB5wu z8jVy4iSweSiGL/G9jbBtUCRJLbfvKTcAiEA7tDElvJZ4krFrrnPleDEBUMng5nf 8pwrZqUvYyplAE8wDQYJKoZIhvcNAQELBQADggEBADbPMsszkBwq5F/Mi+lSCovI R4EvZybrUyZJJcwuqgBKqDIfAP8ZulMK9txswYVhP+iSt2GnH46sFIc7DugteAdl DmkQgOju52nwH7kbW8cQv1dGLUxEoY8h/Rqof1WfHzjimbDJ9wJodTbX/TkuePMo OZ/UXT0yQDVC03fT3TF0SzjOBRSjMWyjjgn5cx3t1j3/TkRpJI3MX4xhVfNl2Z7j ylmVWoMR1VvQlUvaHfTg4rWJ74CqeZ39GifTTY9gOy1jc910FX7Pa9DUrFyFcah5 8svdfvGYjtmJhe/dc5BAGni2vif08dIJNpFoZtBmsCM3nIo4QORKcSjguqHC2gs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3nV1PQORuvNFOoXos/1n 83s3UXwjkEMRtaRn/1Q2XNQdEZsmzb7VZZmPjlkS+M1LEWXiOouXiF3PcCg3rVtf UHVzEtfTPNye63tUnGaNv5UKYf4LSFDV3A2CF6wMwhdFoVrc0bncxUtJu4puy815 EODCddtboh2P7psVrWFSu7Iu2kKOK8okBT38egRzBLsz/zizrdOQ5Wpc7SGGb6za uWWnt2qE5H3shwFt5NWB5eGnjmj00yNBvWbhq3vfADzrWIMvT8PkHNZv32EjTZSg cDczcf6o0zKoEkCr+C3EPt0BoOVI/qYCQyJ4WXHD1u6byaUgdceoz2tqmBsPSW4W oSqyZ3aVlMD4kaBff/m8QThfwPV+SSlr2gOlZAB0TMpxkztrmQy6xE9vqjLEa8a4 4Pbme+zr4g9KgpfQRtcvko2NgTHLm8kuRlmid74yQ7ZeHIc3gKWNT1X1Z3xlCKri hbWU7N+JilIpjf9xkKI2gFlvMrXwJxBGo30Lq5j7LcQnDqwjJXgyg9UFCzRfUFwl SIAO/e24vTHm93wevr7WmYm8lqBjpaUDfLH6RZrjx29OyzHvVhmOHmDFeAd2yH2u PTc6/ya3Hq+IMkJs3RK6csk1nY7tkwHOuF9Mh2AOWRWEwYmeqGsNBYXHAvWqNLg6 a1q/1FsAK9ZdmLKLUKOXbjUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 267745750436643533089395141047328494058420 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-15 00:47:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-13 00:47:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'benefitsofwine.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 907552806065039923638948783642594228315643493808925669967642134260115642978845446168721009607723991479508342643681015337997628997210538674619465138999466797021536411537511118504879357815738388108897960866420738870736047295772953561737161924852629501029665019550345664906916747728750506557938200997835350249405106518856663057985461183520006431195798666993250141583481337371865947975522906333751470649984378355739518228973093387195788538368086936539619010782743982277342938057724340191563541414058530558190592168556678442236474908768850321171718584995266208705071674925164465802138011585203574212757735193154187312222481553089323836560372116888984476886006852925027249485200779690470498889583642610872945100191737675674977016469590726639130162615033964309616550566770323842481718951663074159801655332166268488722134324839035187821287145642667219596850805340869604234320607332143788767585378159010077996976098385381555695979084406223108449823033290734335999549735642991443900941592371616686241864450079872149329845278411600242865307223763255370054232554939296464396133173816877172697788504943692274770233425651237760331350679361825596475552860252515006644122897390982665200011865944256931564445506181865431649355101956952792729761836597 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5f0bc51324f0cf0e3f697f811d39ce5d9df0ee4b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'benefitsofwine.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016e6cbe4f0d00000403004630440220637fb4df8788feee7996b5d9cd51b1d6a7e4d6fa4932c58da6c6f9c5664027c402207f552c05a1bb5e81b5ee930c24158d615a9aebfa020a340e2c290091a28ac06500760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016e6cbe4f3d00000403004730450220552730ddb1079c2ecfc8d5cb8892c1e4a218bfc6f636c1b5409124b6dfbca4dc022100eed0c496f259e24ac5aeb9cf95e0c40543278399dff29c2b66a52f632a65004f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0036cf32cb33901c2ae45fcc8be9520a8bc847812f6726eb53264925cc2eaa004aa8321f00ff19ba530af6dc6cc185613fe892b761a71f8eac14873b0ee82d7807650e691080e8eee769f01fb91b5bc710bf57462d4c44a18f21fd1aa87f559f1f38e299b0c9f702687536d7fd392e78f328399fd45d3d32403542d377d3dd31744b38ce0514a3316ca38e09f9731dedd63dff4e4469248dcc5f8c6155f365d99ee3ca59955a8311d55bd0954bda1df4e0e2b589ef80aa799dfd1a27d34d8f603b2d6373dd74157ecf6bd0d4ac5c8571a879f2cbdd7ef1988ed98985efdd7390401a78b6be27f4f1d20936916866d066b023379c8a3840e44a7128e0baa1c2da0b