shoppingcart.roughnotes.com

Issued by R3

About this certificate

This digital certificate with serial number 03:d5:98:fd:d1:b5:a1:48:9a:a1:18:5b:b8:f4:98:8d:ca:3e was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=shoppingcart.roughnotes.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:d5:98:fd:d1:b5:a1:48:9a:a1:18:5b:b8:f4:98:8d:ca:3e
Serial Number (int): 334020362509318968619379218655703825500734
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: bc:dd:6e:d2:4b:cd:4a:20:4d:c6:e5:3d:b0:44:c6:8d:58:be:12:fc
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 70:bd:ad:3d:3b:f2:ba:c6:97:3c:ac:78:d3:df:0c:c4:58:49:fc:91
Fingerprint (sha256): 9e:9a:20:74:e3:da:8a:9c:1f:e8:26:4b:86:1b:be:4d:d4:5b:75:62:20:dc:69:d6:1f:d3:74:57:26:1b:c3:ad

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate shoppingcart.roughnotes.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for shoppingcart.roughnotes.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

shoppingcart.roughnotes.com

Other certificates including the domain name roughnotes.com

(limited to 100 certificates)
roughnotes.com
shoppingcart.roughnotes.com
roughnotes.com
roughnotes.com
roughnotes.com
dev.roughnotes.com
roughnotes.com
roughnotes.com
shoppingcart.roughnotes.com
shoppingcart.roughnotes.com
roughnotes.com
roughnotes.com
roughnotes.com
shoppingcart.roughnotes.com
shoppingcart.roughnotes.com
shoppingcart.roughnotes.com
roughnotes.com
roughnotes.com
shoppingcart.roughnotes.com
shoppingcart.roughnotes.com
roughnotes.com
shoppingcart.roughnotes.com
shoppingcart.roughnotes.com
roughnotes.com
shoppingcart.roughnotes.com
roughnotes.com
shoppingcart.roughnotes.com
shoppingcart.roughnotes.com
roughnotes.com
roughnotes.com
roughnotes.com
roughnotes.com
shoppingcart.roughnotes.com

Certificate

The complete raw certificate details for shoppingcart.roughnotes.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA19C90Scwvkgciy2TLlwN
v0j7r+5FFXhO4caNDhnn1mxzEGjOcQ8PLTdnJTafOsL9MX44HTUoLbXfkojcTRuT
DA4tOoeNgVzodoP0yS2db2VPqMUX4XmV6S5WH9Dt8gw+z57kxDkSpgXLA0j0so/V
r+XkW7BPxjvU/SvWpRShK7X1Gge/8KSaUA7sX0qACYwPDiRL9TvTx5ER2V6yggb7
zewW/63ehNVLr0SPdunWffMM0MyjRLisGDiPUzpAnJcLwcLdCW2rbREDl0K4Xfcv
6E62cxl3aZ2XjNj6yXB9DowThSnaY1YNPy7YQ81TTBWcg569OgVWQF3jREBYaIUI
cQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 334020362509318968619379218655703825500734
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-04 07:53:07 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-03 07:53:06 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shoppingcart.roughnotes.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27244169824289864297740551375620295310426459996848741729521642840146158834938353914918855307393315718968570599122069660880045592761815706209327325856310517603552483485874279563898628703506100414143286797854833910130137390490187898733895092913793092347029032077866467407427717747123081944296572490464189743277060666875720909283701012918023067659984061892323340352032071995193439491752535905000291398372136167067846793217381659042391348449800941021221430549120624140778588649121722791642536496772236758725746946948675609034213650515840424551879563868623228829169191184964867426929200865439381972561233323743321256167537
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							bcdd6ed24bcd4a204dc6e53db044c68d58be12fc
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shoppingcart.roughnotes.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018a5f6547fb0000040300473045022100a1f5912a864700269ff6a5e605df2353472c0b8d4b378f67f3ef1a14113bf48b022006b0dc8fadf5151acd68b8e07c392bb727cbf81d8b53a04630ffc84355a98fa80075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018a5f6547db000004030046304402203816fd81ec964d2ef69d13140ae992ded2dbc24e90682105cc0353a8bace33760220443eede9b3da2e4bfdc9d6c747f0969b6a80419af806c096985182d33858f670
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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