www.legacysuperstore.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:99:aa:59:69:da:58:15:30:59:ea:6b:86:a4:67:94:d6:37 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.legacysuperstore.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:99:aa:59:69:da:58:15:30:59:ea:6b:86:a4:67:94:d6:37Serial Number (int): 313626492954840178255994353385365071779383
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 31:64:21:f8:f1:27:a2:02:ff:dc:c8:dc:99:57:24:e5:7a:b3:4f:ae
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 06:04:c2:48:ce:55:3d:66:b6:92:75:84:65:af:26:e9:3a:a1:1a:0e
Fingerprint (sha256): 9d:0c:c1:92:0b:0d:5f:a2:44:0c:f2:da:18:04:91:2e:0e:0b:51:b3:e6:a6:1c:62:4c:f2:14:a2:22:58:e1:9d
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.legacysuperstore.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.legacysuperstore.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.legacysuperstore.com
Other certificates including the domain name legacysuperstore.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.legacysuperstore.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGaDCCBVCgAwIBAgISA5mqWWnaWBUwWeprhqRnlNY3MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MzEwNDQzMThaFw0x OTA4MjkwNDQzMThaMCMxITAfBgNVBAMTGHd3dy5sZWdhY3lzdXBlcnN0b3JlLmNv bTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAO7NGEqfQmcrAQgsMgbJ AK8HHo6LXq1McJk31Plt6sh62kQrPkaLZQgpRZJgAEUicYqZabaBp9JokDsEtMtF /H1pkGD64wR8zMUb2s5fXTVGn8bSfDfGNC/qSC2v4bviGyuO+DFKchd2jAzGTXW+ Zp51CFHcov9iKqQmSYNk9HsWvfC3lDyL4kF8Wz2zsQGxMWbZE1dHBg9BDD9sjyZZ JHU0eIcVJO2+a/kM92Y2Yv6l4DMLQbhRpwDvKexp2MKUxijuWjqgzCYoRtAzRoSs FPouSYPReOyCzNmJIvZtFNYQSphRwR1+Agud52rkaymBAr0F+XvSXACTktwMCzG/ 8FSs9C4kPZ9yGhE4ZBmB+y7oukwsXmLjDteIOI8ey00GZ+GjhKozEl7JIFbQhCCc tXCNjSsnNVQIANhOQgQSWwPq20Gr1zwNz2TnbGYw2oVGKaR6tA07+ElPeBd+694c tNQbS5JoiSP3ajRsa/JOamw8V/tmSscTMdDWqSsQr52sVccmZpGkcWttZelwfkRh PmOKCLu4n11yonxbpIeM0BTZ4JrCD7ml7YpKu/ZV7t+ZIhifREkN9/2bqgLraml1 dTCA1kYKv+oadKkFsQdKCJSePUbeDrhmF05JrSpGGEClw3RIxZqQIOJg9pSGbJ9E BT0Q96wGofbMUBB2GUHzDzC7AgMBAAGjggJtMIICaTAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFDFkIfjxJ6IC/9zI3JlXJOV6s0+uMB8GA1UdIwQYMBaAFKhKamMEfd26 5tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDov L29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDov L2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wIwYDVR0RBBwwGoIYd3d3Lmxl Z2FjeXN1cGVyc3RvcmUuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQB gt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3Jn MIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcAdH7agzGtMxCRIZzOJU9CcMK//V5C IAjGNzV55hB7zFYAAAFrDGn0GQAABAMASDBGAiEA45/yleot5bpuSB73Cga7cJZb VmOS47Fk40Ub3HgvaLYCIQDsT48XDkxmtHcYypr1Py2tMZfXZjs2rxYXd/ri+pvk nwB1ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVFR/R4AAABawxp9DYAAAQD AEYwRAIgGGcHqNsR6nGyUpzpUeluIB2UDcC4mnHts2luRVpem/UCIEg5+8D/AdJp wWua5eWfaDLHIGgHkbwdQx6vPhKseKArMA0GCSqGSIb3DQEBCwUAA4IBAQAsjnMw rEuD0BoHbMeKHq5vpw5j4nZLcOcIaot9F9Quea81loTUSK2ZCm/LIFEGO86IGEi4 taYpz+Lv6Dy0yQG+3mtj0lPHjOJwDwanbPvoUou5o+KkU5+jS8yy+JwlLk/PH0ST uybHhR+UkWyf1aYbHJtHd1S493TTPus2/A23ey9PDbH7MWOwhv97l9/CLsVHy/yr Bz0yfRJ6oiv5wbvwT/kUrz3tatmRwaX7hZk3onZNeQNCXaZ9I3eMnWfW+Xoqr98A ztrrO8Nm0IqRPw4IyCC7kirsyph/Qd81gpqQmqAaoyB47ru5T3seU5EQpehgrRS2 +Fb2hD4VxWBRGeWo -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA7s0YSp9CZysBCCwyBskA rwcejoterUxwmTfU+W3qyHraRCs+RotlCClFkmAARSJxiplptoGn0miQOwS0y0X8 fWmQYPrjBHzMxRvazl9dNUafxtJ8N8Y0L+pILa/hu+IbK474MUpyF3aMDMZNdb5m nnUIUdyi/2IqpCZJg2T0exa98LeUPIviQXxbPbOxAbExZtkTV0cGD0EMP2yPJlkk dTR4hxUk7b5r+Qz3ZjZi/qXgMwtBuFGnAO8p7GnYwpTGKO5aOqDMJihG0DNGhKwU +i5Jg9F47ILM2Yki9m0U1hBKmFHBHX4CC53nauRrKYECvQX5e9JcAJOS3AwLMb/w VKz0LiQ9n3IaEThkGYH7Lui6TCxeYuMO14g4jx7LTQZn4aOEqjMSXskgVtCEIJy1 cI2NKyc1VAgA2E5CBBJbA+rbQavXPA3PZOdsZjDahUYppHq0DTv4SU94F37r3hy0 1BtLkmiJI/dqNGxr8k5qbDxX+2ZKxxMx0NapKxCvnaxVxyZmkaRxa21l6XB+RGE+ Y4oIu7ifXXKifFukh4zQFNngmsIPuaXtikq79lXu35kiGJ9ESQ33/ZuqAutqaXV1 MIDWRgq/6hp0qQWxB0oIlJ49Rt4OuGYXTkmtKkYYQKXDdEjFmpAg4mD2lIZsn0QF PRD3rAah9sxQEHYZQfMPMLsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 313626492954840178255994353385365071779383 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-31 04:43:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-29 04:43:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.legacysuperstore.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 974223702820952806368664278226779459129870174303700608040597553700798041649635235316862549330277187958166365232189852972164057962420403620084263620453065762085985192480650410119884302262672861859497678498247074971271843452737336851376142280909703383662718565386157056923008629280024422528152321176964684753962313233456301067981478608493878925531815765337602761296287937709756186612750981817944615839118718420658063243257242141825667627171880666387763559098442945498598019007831767500891986562387388267607491298041151162618965068242234790311456224351307893480257481031392731374554544824951984185001442324494385983267736265207963195636390034078199691806724174620946058668319420830899499747289461485080955765993012697304527416755057600730715095062988273216461196294752585951735622035618830476332359320331112691092059274704490536317952069179562770420210175720141111429857557794366325084646571340085159315648411969528019337335039945778680029720397026417199630884715128616506993465482148176661020731387040833502253133001047107654829337634072397341890080863188232308308312253830369294719607509876481024787287844613961446701672090141058377199606428861398993161748858000057225021734816177050807970023342214461736179198653605290396120920305851 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 316421f8f127a202ffdcc8dc995724e57ab34fae . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.legacysuperstore.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016b0c69f4190000040300483046022100e39ff295ea2de5ba6e481ef70a06bb70965b566392e3b164e3451bdc782f68b6022100ec4f8f170e4c66b47718ca9af53f2dad3197d7663b36af161777fae2fa9be49f007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016b0c69f43600000403004630440220186707a8db11ea71b2529ce951e96e201d940dc0b89a71edb3696e455a5e9bf502204839fbc0ff01d269c16b9ae5e59f6832c720680791bc1d431eaf3e12ac78a02b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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