bastioncraft.com
Issued by R3
About this certificate
This digital certificate with serial number 03:be:00:76:c6:75:ff:19:26:ff:cf:94:1a:c4:ef:a5:b4:a4 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bastioncraft.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:be:00:76:c6:75:ff:19:26:ff:cf:94:1a:c4:ef:a5:b4:a4Serial Number (int): 325991124226554100729591449013993372759204
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 05:65:95:18:bf:e0:3a:06:9d:96:8a:89:54:d9:4f:1e:f2:ef:86:b8
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f8:c5:c6:91:81:64:30:c1:0f:59:ea:88:82:4b:f5:fe:f4:a5:68:5a
Fingerprint (sha256): 88:69:b4:56:db:16:bc:a5:f7:7b:9b:66:15:7b:c0:21:80:f7:fa:14:fc:60:20:60:d2:55:3e:82:d8:fb:2b:75
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate bastioncraft.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bastioncraft.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bastioncraft.com
www.bastioncraft.com
www.bastioncraft.com
Other certificates including the domain name bastioncraft.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for bastioncraft.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGAjCCBOqgAwIBAgISA74AdsZ1/xkm/8+UGsTvpbSkMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA3MjMwNzE4NDlaFw0yMzEwMjEwNzE4NDhaMBsxGTAXBgNVBAMT EGJhc3Rpb25jcmFmdC5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC AQDCTcVYjD3a6pYa8B0NDW8y82dRU6w5sUeYC5xjtnX/vJu5YzDXgeB3Tf5LhWMN cbBTEJx3cOh/G+o8pUpU4tekGRdHYlC21dnmGSUxqRYibzrMBK/e71zsRh0q2/hd JoVd0O+nuZ4LHS+MWjWngvsHYf0npjBF5VEkkPFALyr+u4OYIoN0HsoiryCfeUo8 LK9F+XZXQcF/An9B3fNwBQwxu9q+aC8hv0wP+Y5dUac4vac8qkMXpY8C9ccD68m+ cnVpKEjg0o5Cw+Z8LweQaVDuZMSH5cbweIoaQ2LBNt2TtOOADSgdaaP+BWajmD3K 3VQNorDFCL21Z33nRQz2QNPEI7brDrUHhXD+Lko23OO5Zm+F64BjBJVANlLMXKCA CnXF0UUXxmNcsCxCGSxKVuZSDyab/XCwAyVfgSgbzxOF9SorWgcebv6BMYZQjzVa W301UC56x6ZkTI9+0em0+hWxXm1Nb3UvbqxxRMrRRSR+aREFh7/Q7o+BwRPusq73 GVUXp3m+awopm7RQIaunDAFpXE7u0ZpTpcDO1EwF9FIZwjxJCbWMkVfLU9g2j2cZ tDABbI1Nt932ZbyQmdBJhD+VQtCkmdG3W1F2cphn31uWGCzrKU7NlGkutZQgFAQm foP5QALhbN2isNhtJRAAVTpYahUjG+UJUctePFo15IXQ7wIDAQABo4ICJzCCAiMw DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAM BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQFZZUYv+A6Bp2WiolU2U8e8u+GuDAfBgNV HSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYI KwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0 cDovL3IzLmkubGVuY3Iub3JnLzAxBgNVHREEKjAoghBiYXN0aW9uY3JhZnQuY29t ghR3d3cuYmFzdGlvbmNyYWZ0LmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMG CisGAQQB1nkCBAIEgfQEgfEA7wB1AHoyjFTYty22IOo44FIe6YQWcDIThU070ivB OlejUutSAAABiYHUbNQAAAQDAEYwRAIgcy89Nyxx5YUrD/pcFsC2HzOfKQhGBpCL qHfWe45k3OMCIEoq70X9nY7RkF23zOI3Yp7M07lvCPnxMjqpRoX4VSIlAHYA6D7Q 2j71BjUy51covIlryQPTy9ERa+zraeF3fW0GvW4AAAGJgdRs2AAABAMARzBFAiEA iKHSVay6rSnDBqtMRBvo6ln8GdTiBb4umLcZMeSe5lUCIBgP9QcDc29tgwe3Wtzz K/XLKXJ+s3XgiImc9LJvMmALMA0GCSqGSIb3DQEBCwUAA4IBAQBqvJl64YYsS929 4+jQewsUnWXaLcH6xM8uXdZjmVfCFZOAvI3JeJfw9dMGX5LOpBD8dDIvTJOPukTa G43/E9+61DiczcUlByZCfzELCiLYi/OmxiN5f0j1173ZGrVZaevskixxjg51gZg2 nVj0HdMWwjFA8yuFOeetKVpYorXuu7SQ/i7Vg3ihrqmTSdN53ItAywyzrkQPm1eG 1nKEwGNt3Ded/xg3mJE2W5UZewRknuwXbWG5l9mp/pWDaRQmonpxQuPnNj636jPg QE6cF0t5f21XYoN6S/CuK2s1i4kTSId6ZVFw3WDl6NRqW6o5AN5c/D72cBRFdDu9 2tNiC0mS -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwk3FWIw92uqWGvAdDQ1v MvNnUVOsObFHmAucY7Z1/7ybuWMw14Hgd03+S4VjDXGwUxCcd3DofxvqPKVKVOLX pBkXR2JQttXZ5hklMakWIm86zASv3u9c7EYdKtv4XSaFXdDvp7meCx0vjFo1p4L7 B2H9J6YwReVRJJDxQC8q/ruDmCKDdB7KIq8gn3lKPCyvRfl2V0HBfwJ/Qd3zcAUM MbvavmgvIb9MD/mOXVGnOL2nPKpDF6WPAvXHA+vJvnJ1aShI4NKOQsPmfC8HkGlQ 7mTEh+XG8HiKGkNiwTbdk7TjgA0oHWmj/gVmo5g9yt1UDaKwxQi9tWd950UM9kDT xCO26w61B4Vw/i5KNtzjuWZvheuAYwSVQDZSzFyggAp1xdFFF8ZjXLAsQhksSlbm Ug8mm/1wsAMlX4EoG88ThfUqK1oHHm7+gTGGUI81Wlt9NVAuesemZEyPftHptPoV sV5tTW91L26scUTK0UUkfmkRBYe/0O6PgcET7rKu9xlVF6d5vmsKKZu0UCGrpwwB aVxO7tGaU6XAztRMBfRSGcI8SQm1jJFXy1PYNo9nGbQwAWyNTbfd9mW8kJnQSYQ/ lULQpJnRt1tRdnKYZ99blhgs6ylOzZRpLrWUIBQEJn6D+UAC4WzdorDYbSUQAFU6 WGoVIxvlCVHLXjxaNeSF0O8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 325991124226554100729591449013993372759204 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-23 07:18:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-21 07:18:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bastioncraft.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 792690314504406252947183629528997182668939364972621881638533920604165004909632051892042017023778188856074205016058689811109914218736191778038867198745059503232258824200233891440883511732630870457214871342601647079483995289972660548990319312373566743884714588657087664840299494366384276188814082777441386931266608966526357087529308831759773077774681146691037626814237805638401031214746507435686018049763522874896896776144627645200153256385045223416249966938054765463305242814546790212096242946605111514996391569080846843754621149107595509977777532817338614379681574839884818139582932635326849628330963888782445532122834409537324419837793095737221908183969549653185773070285370995112843550304213478865147160418681305164761281369249573107252085873585546040294384536883249320235438723454984333176930609727298091173418800347164476931513840405517433194548265845800865961486104790165690718194108177938372786304589351894848541275293338044299704031652249922211213655353973772165897226834857473516856545521523144640972853824804410340968961913526224517821322298732893865383481463481082135791689503803453631090572459230131598106652233573213474342801592266104595789422841694362968205741599658171324675832550778378903113383551237002039524201976047 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 05659518bfe03a069d968a8954d94f1ef2ef86b8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bastioncraft.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bastioncraft.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018981d46cd400000403004630440220732f3d372c71e5852b0ffa5c16c0b61f339f29084606908ba877d67b8e64dce302204a2aef45fd9d8ed1905db7cce237629eccd3b96f08f9f1323aa94685f8552225007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018981d46cd8000004030047304502210088a1d255acbaad29c306ab4c441be8ea59fc19d4e205be2e98b71931e49ee6550220180ff50703736f6d8307b75adcf32bf5cb29727eb375e088899cf4b26f32600b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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