belly.goldlans.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:51:0c:7c:25:72:19:b1:61:06:0a:3a:4e:71:10:e7:11:ef was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=belly.goldlans.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:51:0c:7c:25:72:19:b1:61:06:0a:3a:4e:71:10:e7:11:efSerial Number (int): 288916324856125750214540337054168142778863
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 97:b7:92:cf:76:fa:bf:62:98:31:bd:df:f9:73:57:18:6c:ac:a0:09
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 05:86:4a:13:96:7b:4b:a3:5b:d1:95:19:b9:24:bb:f4:2f:80:9e:4d
Fingerprint (sha256): ad:9a:36:00:d0:57:21:75:03:03:6a:7a:fe:8d:a6:72:79:2b:b1:be:d5:72:c2:2c:1f:7d:c0:a0:d0:4c:32:11
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate belly.goldlans.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for belly.goldlans.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
belly.goldlans.com
Other certificates including the domain name goldlans.com
(limited to 100 certificates)
belly.goldlans.com
4comfortshoes.com
goldlans.com
forum.goldlans.com
forum.goldlans.com
forum.goldlans.com
belly.goldlans.com
belly.goldlans.com
forum.goldlans.com
belly.goldlans.com
belly.goldlans.com
goldlans.com
belly.goldlans.com
belly.goldlans.com
forum.goldlans.com
korobki.goldlans.com
forum.goldlans.com
sixfaceschat.goldlans.com
belly.goldlans.com
belly.goldlans.com
forum.goldlans.com
forum.goldlans.com
belly.goldlans.com
forum.goldlans.com
jettaxi.goldlans.com
belly.goldlans.com
forum.goldlans.com
belly.goldlans.com
belly.goldlans.com
forum.goldlans.com
forum.goldlans.com
forum.goldlans.com
taxi.goldlans.com
4comfortshoes.com
goldlans.com
forum.goldlans.com
forum.goldlans.com
forum.goldlans.com
belly.goldlans.com
belly.goldlans.com
forum.goldlans.com
belly.goldlans.com
belly.goldlans.com
goldlans.com
belly.goldlans.com
belly.goldlans.com
forum.goldlans.com
korobki.goldlans.com
forum.goldlans.com
sixfaceschat.goldlans.com
belly.goldlans.com
belly.goldlans.com
forum.goldlans.com
forum.goldlans.com
belly.goldlans.com
forum.goldlans.com
jettaxi.goldlans.com
belly.goldlans.com
forum.goldlans.com
belly.goldlans.com
belly.goldlans.com
forum.goldlans.com
forum.goldlans.com
forum.goldlans.com
taxi.goldlans.com
Certificate
The complete raw certificate details for belly.goldlans.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGBzCCBO+gAwIBAgISA1EMfCVyGbFhBgo6TnEQ5xHvMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzEwMDgyMDQ1MDBaFw0x ODAxMDYyMDQ1MDBaMB0xGzAZBgNVBAMTEmJlbGx5LmdvbGRsYW5zLmNvbTCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAOhM55ROg/fWdDBu+F+dTPASLzhL Q4qPy71B4PnxmNUrSY+XsiT+4sZOxq93BOKu2dXV0OQk0DcrXjzicvMScenEReZF Y6nDmaktaDLoj3Bppmv4EaJ6TbezlIAzXQUvtGEli2CVon3mwEJ4V5pDqscqwLzX ee/cEID/36IZ7BwQgN2AsEmnFg+WXsvl2XOJ0VENYl/43C6xDPbMKIyNgl5Ur/9X QRm1f6pojB+KNRc8s/DXjJnS9Wf2yYshy8vRVIUtqqqmbAeAHs2EByr00RcW5g/b 6N2m1oqPxOOQgEElgWbOWc+vWXS4Gl+GAr+d+Csc9xWTWOqrE4uuSmHgEB7wnO9i AoT3bG6jelR5aT8TwKTCdenab1H2Zo6ONXNOIj/sR/a2ntsuL0ByzCXpQfhBimYs UlkglmUuwAoecwJNKPUaaPLs4sqeI200OcLBPRAv1ipGXuEgH+rVfqJH//LK/iMN Tr5yAZkeXHvTfCFb6FtP0J7uwWW0SmuSb0Vlh8ZC6ZC9kahxGt6Ju4eOHvhruBY2 0zMkzBCylQb5KfzjCQLYFMSvGCUmMvBdJQJ868GRgUNfEmuuygl2JzRxw26CHxmt iBDh+jYWJFkwDRlfTToff3+EkO22tcdHRMwdCSfjjxGAXF63nQl4sG6eAVucvZZq uOvwpnr2uFjv/o7FAgMBAAGjggISMIICDjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FJe3ks92+r9imDG93/lzVxhsrKAJMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISYmVsbHkuZ29sZGxh bnMuY29tMIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB 1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsG AQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQg dXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3 aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRz ZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEBADA3bfTV EpPaNEbifCt9+RzZGmhIskJa0cHOuDX4NJ2UYJ9KzGfr/VkqgDlrYgAcT416kKHH wFMydrTo45BEXfUmi/62foHLDEhRs9sSPT9pOZe0a1hSFGDpfpDKy3QDKHAqZUaq Fvs1ZwQSmiUirKejfTZ54My0BJy/OoEGJ+aYv1cqYglisN8pWUDi7uIGnYcfjgf8 iWNGMgbJjz+fXXxYdkLySLic+CJj7fiRDHKHlGm7y0nRL7WULCEFsHfz07tr4hbh EBmfrKSqQIk5k08thz2bTiPmHYov3vKEgSud0cz8gDBsQJw6kN42x7mSopUVUDxQ FXNU6s5TRQn9r2k= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6EznlE6D99Z0MG74X51M 8BIvOEtDio/LvUHg+fGY1StJj5eyJP7ixk7Gr3cE4q7Z1dXQ5CTQNytePOJy8xJx 6cRF5kVjqcOZqS1oMuiPcGmma/gRonpNt7OUgDNdBS+0YSWLYJWifebAQnhXmkOq xyrAvNd579wQgP/fohnsHBCA3YCwSacWD5Zey+XZc4nRUQ1iX/jcLrEM9swojI2C XlSv/1dBGbV/qmiMH4o1Fzyz8NeMmdL1Z/bJiyHLy9FUhS2qqqZsB4AezYQHKvTR FxbmD9vo3abWio/E45CAQSWBZs5Zz69ZdLgaX4YCv534Kxz3FZNY6qsTi65KYeAQ HvCc72IChPdsbqN6VHlpPxPApMJ16dpvUfZmjo41c04iP+xH9rae2y4vQHLMJelB +EGKZixSWSCWZS7ACh5zAk0o9Rpo8uziyp4jbTQ5wsE9EC/WKkZe4SAf6tV+okf/ 8sr+Iw1OvnIBmR5ce9N8IVvoW0/Qnu7BZbRKa5JvRWWHxkLpkL2RqHEa3om7h44e +Gu4FjbTMyTMELKVBvkp/OMJAtgUxK8YJSYy8F0lAnzrwZGBQ18Sa67KCXYnNHHD boIfGa2IEOH6NhYkWTANGV9NOh9/f4SQ7ba1x0dEzB0JJ+OPEYBcXredCXiwbp4B W5y9lmq46/Cmeva4WO/+jsUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 288916324856125750214540337054168142778863 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-08 20:45:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-01-06 20:45:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'belly.goldlans.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 947702984025404606194556662727705383830440395158290776056501939049321605826567688711329852797615206515498084851358320299788002729830709709796661936103463620279503038994973793378246374511271135171210596313924889067279907740340177059238777719848445330208334979434300836609353219983145456483235705675727968006873068022962925459849068146248853368949026322981247648701505162854690430870708156233076336552041523003683992616698551144446676937909482653375626942966476502247897085972934973824630127737406855497913701218339678604258410535384963955482584132539072878548939680361048286182612554709225803059989704670808855128927724377701822959674570167677038800034097216589992374659047733939750386195242446164124101876390793833206794364878675003277963569805725577328331646962715894797513897827337258064902431509305928121275008069618926413067550922520122996853628504891728092444440618491426164693442569132286283112020310914637901202171901279488253603293517110566155919331756217219716530155057274429605867362685297471461798634132234350335527033730238135842737457947347712646481224087591399336035181956800838754757691757748907310135015265931233647070649596016478459753676843955100644743734047125993506062255899061225594189599505451088187323890699973 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 97b792cf76fabf629831bddff97357186caca009 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'belly.goldlans.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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