www.gold-sun-usa.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:0e:46:e5:c3:a1:7d:da:e5:1e:45:5b:25:3d:fc:3e:14:e5 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.gold-sun-usa.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:0e:46:e5:c3:a1:7d:da:e5:1e:45:5b:25:3d:fc:3e:14:e5Serial Number (int): 266195049895723984145898102663066710578405
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ed:30:45:6c:63:a8:6a:a1:c0:ea:e9:44:e9:3b:c4:07:fb:07:09:b8
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 24:07:b0:43:af:ff:2f:e6:55:be:b3:14:fc:9d:dd:05:3e:99:49:38
Fingerprint (sha256): 8e:40:92:f8:b7:06:e0:4c:cc:e8:c0:44:ef:9d:70:d5:cc:6d:7e:0b:c4:82:13:1b:bb:7f:b5:3d:a0:d9:7f:8f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.gold-sun-usa.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.gold-sun-usa.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.gold-sun-usa.com
Other certificates including the domain name gold-sun-usa.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.gold-sun-usa.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgISAw5G5cOhfdrlHkVbJT38PhTlMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MzEwNTM1MDhaFw0x OTA4MjkwNTM1MDhaMB8xHTAbBgNVBAMTFHd3dy5nb2xkLXN1bi11c2EuY29tMIIC IjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxsfid1L1aGtyZznhZZU2eKgk 1yOS2Cq5HbqXuxQcqsFtvkdsye+fIPPcjapv5S4rXqEceUO2IjXQlSHJefCLG9X5 +hZOeNphHan96JUQn5Up1BwHgcecIkcKOfUO6FW5fBK//SFWoCFKjWkv88ZmiCVG ExsXVGhYcRPCuo3q7FvoP2+hCVONKKnV1h8AzBGY9ENT07yhWNg9mmX+pgYyfO28 LN1jPUik+74T1Q1Xnn5Tef+Jl82d0x+m4HoJd4Kgyn4VqqPbDdgXOkhWcxLzClfD m63h0EoDf6QbXteWj71QaBnc1aIYuO3WsRXkwsjByg7ynHosvervL01MMgQn696Q 5VeWLtk9XmfpDosmQeUQAOuc/FuyEUd/1DkODWY6uHsjZ0ynWAYscPbkSmsXgQzJ +g4uB/rn3psV1aQFUW7EO5N2mjps5IXiHs1ZG+zDMwR6LDUw21RdH6vIxhpQ8ECb 4x6yLtncS3zMKyUEGpAfbWDfaHPbUd4GFNWZdvT1YVfBbHSTm03Ul5DVWwN3c1UU 7yGPUQgAV5jLp9pMUZesM2Q8+CfAsZhL/voKT08IoXSgPYsJ2TaF86Xtk6G01NlK cXIO5PtLKo+pf/1EM/ou4vU+WaxDmmnfEnoDKvyhTrXa86NRPq1uI9QE5kzql6kd 2fhxGjmhht2dnuOZDTMCAwEAAaOCAmowggJmMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQU7TBFbGOoaqHA6ulE6TvEB/sHCbgwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3 pkVl7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2Nz cC5pbnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2Vy dC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzAfBgNVHREEGDAWghR3d3cuZ29sZC1z dW4tdXNhLmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAo MCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQUGCisG AQQB1nkCBAIEgfYEgfMA8QB2AOJpS64m6OlACeiGG7Y7g9Q+5/50iPukjyiTAZ3d 8dv+AAABawyZaP4AAAQDAEcwRQIhAMT0J/k9JTPCBPrsluMJ35nTWTj8vTEbhcXr m1igTz3NAiB9cRxQStHMiGknTKHSQEe7+zkMiikv8neuQKiJYkCkuwB3AGPy283o O8wszwtyhCdXazOkjWF3j711pjixx2hUS9iNAAABawyZaPAAAAQDAEgwRgIhAIhl Kuy2XnZhkedndiDauYYA5kHPIe0Tfhlt405EUWjXAiEA+7+QTMohbbDLKyu8wHjd td6Bl3eW6ASAJlEVAWY1+K8wDQYJKoZIhvcNAQELBQADggEBAJgj5LrbtT88Idrm 0Y9ZULlousiVWnX4fTUjbOsAVnvR7uIXzJx/EnQzIwjx4ydu1LSP5+QRfHqnvA2c qX+GbE3T2/tyCZe/lygFoRWYYx4eR3WkNff/cSt6+MhFnIiCwAbDIZ2+e5woeAn0 Dx8Qop4Ya6GxVGe1sn3k0kM9cTVjE9TK7rYtm4Izo9qv0hLvDzguk6kARYm2U+zi BAAzmmsEulmJHRS765m32nTa1dnB5e/jJRoCvzFhNKl5CY23c/0rOI18pHK8+9vz Sr0H9d01UUVlz/veMj/RlIejWI8WkjRVkFPpLphPyp+Z6xPWNEUbF8FRoGQD312d J2K1nhA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxsfid1L1aGtyZznhZZU2 eKgk1yOS2Cq5HbqXuxQcqsFtvkdsye+fIPPcjapv5S4rXqEceUO2IjXQlSHJefCL G9X5+hZOeNphHan96JUQn5Up1BwHgcecIkcKOfUO6FW5fBK//SFWoCFKjWkv88Zm iCVGExsXVGhYcRPCuo3q7FvoP2+hCVONKKnV1h8AzBGY9ENT07yhWNg9mmX+pgYy fO28LN1jPUik+74T1Q1Xnn5Tef+Jl82d0x+m4HoJd4Kgyn4VqqPbDdgXOkhWcxLz ClfDm63h0EoDf6QbXteWj71QaBnc1aIYuO3WsRXkwsjByg7ynHosvervL01MMgQn 696Q5VeWLtk9XmfpDosmQeUQAOuc/FuyEUd/1DkODWY6uHsjZ0ynWAYscPbkSmsX gQzJ+g4uB/rn3psV1aQFUW7EO5N2mjps5IXiHs1ZG+zDMwR6LDUw21RdH6vIxhpQ 8ECb4x6yLtncS3zMKyUEGpAfbWDfaHPbUd4GFNWZdvT1YVfBbHSTm03Ul5DVWwN3 c1UU7yGPUQgAV5jLp9pMUZesM2Q8+CfAsZhL/voKT08IoXSgPYsJ2TaF86Xtk6G0 1NlKcXIO5PtLKo+pf/1EM/ou4vU+WaxDmmnfEnoDKvyhTrXa86NRPq1uI9QE5kzq l6kd2fhxGjmhht2dnuOZDTMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 266195049895723984145898102663066710578405 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-31 05:35:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-29 05:35:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.gold-sun-usa.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 810954908898799458460777764691433743982769177286597984676373403575381129844611112495121959393114424129546939402404443715689880049080612672634924896842701557255140745531196057495710971952047034985994116550216202338011807993710656110814636757291726765525350765046933709282951643357789507727255761263709599219272704449282951392626115399304712103872786713539284257401037324175002148534327529452198736766344699713976247553112708892153609783109405535141519066652760373359654936008697931322965676014905334231224240376981901201670620704954972461212579586843824309050370015532371375843383654618649501244153868664079275130555460875376276900695993920613148686655645952230257175630897269135693718274029443759983623724122748327040091477884603076118514220833144646220673729134260226231038508100801914484081603022171930044371947119265097805960439079843904423048084822870650069781865878383601870605654849597157464588408605150671495251627326508276151924987039616667926253810232952036493440377015605649878378321855108978851138998153417221328278382408422273852570817686365623300331070398424299798904273532538367452185443380994835417053005867484987393156348116865661697475622328615250051338146517015904934406117175214829485327810073117734862298237439283 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ed30456c63a86aa1c0eae944e93bc407fb0709b8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gold-sun-usa.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016b0c9968fe0000040300473045022100c4f427f93d2533c204faec96e309df99d35938fcbd311b85c5eb9b58a04f3dcd02207d711c504ad1cc8869274ca1d24047bbfb390c8a292ff277ae40a8896240a4bb00770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016b0c9968f0000004030048304602210088652aecb65e766191e7677620dab98600e641cf21ed137e196de34e445168d7022100fbbf904cca216db0cb2b2bbcc078ddb5de81977796e80480265115016635f8af . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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