shop1.lonelyplanet.de
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:0a:bb:14:22:26:1d:b3:0b:0a:91:ec:ef:b1:5d:44:e0:92 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=shop1.lonelyplanet.de
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:0a:bb:14:22:26:1d:b3:0b:0a:91:ec:ef:b1:5d:44:e0:92Serial Number (int): 352100637570021109400761309678102093553810
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: c5:1c:86:c1:2f:bf:bc:94:89:a8:b3:a3:05:71:56:22:71:90:ee:c8
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): c4:06:22:c2:4b:35:85:16:80:c7:c3:a4:8a:cd:93:13:06:77:04:9e
Fingerprint (sha256): b0:c0:f6:a0:b4:b5:c1:f8:f1:47:27:7a:ab:40:c5:c2:0f:f8:2d:1d:e2:93:2f:32:74:25:1b:f3:25:22:8a:30
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate shop1.lonelyplanet.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for shop1.lonelyplanet.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
shop1.lonelyplanet.de
Other certificates including the domain name lonelyplanet.de
(limited to 100 certificates)
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
shop.lonelyplanet.de
shop.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
*.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
*.lonelyplanet.de
*.lonelyplanet.de
*.lonelyplanet.de
shop.lonelyplanet.de
shop1.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
shop.lonelyplanet.de
shop.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
*.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
*.lonelyplanet.de
*.lonelyplanet.de
*.lonelyplanet.de
shop.lonelyplanet.de
shop1.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
shop.lonelyplanet.de
*.lonelyplanet.de
shop1.lonelyplanet.de
shop1.lonelyplanet.de
Certificate
The complete raw certificate details for shop1.lonelyplanet.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgISBAq7FCImHbMLCpHs77FdROCSMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMDExODM5MzFaFw0y MDAzMzExODM5MzFaMCAxHjAcBgNVBAMTFXNob3AxLmxvbmVseXBsYW5ldC5kZTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMZeUGE5qVT4ZugDKystY0dC KWb28ABtQ7Bfpnu5ZxiLUgFMBR7op50Hbgf6OcWx2S8hF9b9vpp9Rl8bjsTuK2VH yc4pys1kdyEofOJB8bD6eqyOzncDosm+Wwz+5FN+HYR2HGGLkMQJZ7p3ASMOqp76 1AWUc9NnifAE1T0Goecoaazox+o+nvcodBjwcK/+6ZwhQTLVhJmYPBswBqZQbrTY SoGIxoadZz3lW06sarOA7oLseO4hRfLUp8ITlisfSUxZHivf7kOEdf2mcUouB8vJ bO8Dt2SEXDk41/G5pmN/0Y0+h1cdJr9vy/hbSlAZWCEQ346iTsetxZ9BbhbNQYcC AwEAAaOCAmkwggJlMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUxRyGwS+/vJSJqLOj BXFWInGQ7sgwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYB BQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2Vu Y3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2Vu Y3J5cHQub3JnLzAgBgNVHREEGTAXghVzaG9wMS5sb25lbHlwbGFuZXQuZGUwTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHx AO8AdQBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAW9insnwAAAE AwBGMEQCIHXC4+u+A3wjE6TRS3WHKl5KhZwMgBlr+WfJbavaQ0TbAiAJGxH9MN4N qcC/2AacT+j/xscMDf29oQbNLAH+1r/2pgB2ALIeBcyLos2KIE6HZvkruYolIGdr 2vpw57JJUy3vi5BeAAABb2KeyewAAAQDAEcwRQIgT6XHT67lIau3XY8bIMBQxmt/ ImkC0eOoO2+V4vFJyzcCIQCr3pT8UdqYGuaJ9+XCie3wF59LK43pTYIRpKLJdiaV tzANBgkqhkiG9w0BAQsFAAOCAQEAbPyuYJCsFl/QSxzabSQa6hXm4J00tO1xi0Bi D+6B2j2g3xB06TUs1NJDD+kSzeCtXFg840lmmQXedIibJd1EptWtjoNmBth97VNF v0gB642t0T3qJbNuFYsFvIjOZfqEw8z//3kOvXoSTVuSSyv5uueGOvw6T6EpaQSC SRWJvxXV2PI9B2RHj93lnuuOldEUTPaDsV+GhArqwGqMn1017TR6Zg7q5k9LBkoi pFXfm6RnwMq8Rs+eywLaGuQaR8qzP/i+I2quBM4/2j81G1sxR5iHkC2+soUkHp9r y8sdU0zTrHGxLLjlPoRY2ixZ1u8U5mSvHIfqw3huV7+znxS45Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxl5QYTmpVPhm6AMrKy1j R0IpZvbwAG1DsF+me7lnGItSAUwFHuinnQduB/o5xbHZLyEX1v2+mn1GXxuOxO4r ZUfJzinKzWR3ISh84kHxsPp6rI7OdwOiyb5bDP7kU34dhHYcYYuQxAlnuncBIw6q nvrUBZRz02eJ8ATVPQah5yhprOjH6j6e9yh0GPBwr/7pnCFBMtWEmZg8GzAGplBu tNhKgYjGhp1nPeVbTqxqs4Dugux47iFF8tSnwhOWKx9JTFkeK9/uQ4R1/aZxSi4H y8ls7wO3ZIRcOTjX8bmmY3/RjT6HVx0mv2/L+FtKUBlYIRDfjqJOx63Fn0FuFs1B hwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 352100637570021109400761309678102093553810 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-01 18:39:31 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-31 18:39:31 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shop1.lonelyplanet.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25041692341938256939087644404840794910930403574026804316366718691736381003127187124946925201989389032763969503399330395979511763538972243099097584841609406083708472838353324136483463101879374119876356837205735331836317277877294786207230166530064576624840883848315498264663415821054720714152164513941455824522273372005867713558222131184801774101478908283022790020436548139877419421381381226785106942097636844172902199957017390525477055616289386209898816237371798911851619093607625039829242140813094411163604726248999191133060597866712930536981436480566627067502802294184463351588066518908218010714131161891283183419783 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c51c86c12fbfbc9489a8b3a3057156227190eec8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop1.lonelyplanet.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f629ec9f00000040300463044022075c2e3ebbe037c2313a4d14b75872a5e4a859c0c80196bf967c96dabda4344db0220091b11fd30de0da9c0bfd8069c4fe8ffc6c70c0dfdbda106cd2c01fed6bff6a6007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f629ec9ec000004030047304502204fa5c74faee521abb75d8f1b20c050c66b7f226902d1e3a83b6f95e2f149cb37022100abde94fc51da981ae689f7e5c289edf0179f4b2b8de94d8211a4a2c9762695b7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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