thermalcoffeemaker.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:20:69:85:c2:b9:3c:ed:c9:18:d5:0b:ff:55:31:28:2a:db was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=thermalcoffeemaker.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:20:69:85:c2:b9:3c:ed:c9:18:d5:0b:ff:55:31:28:2a:db
Serial Number (int): 359478442933014148455278310376162627955419
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 9d:96:47:f4:d0:73:ba:24:31:f1:5a:a8:bf:2d:1b:fc:52:d8:50:ce
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 96:67:69:a7:f9:ef:dc:1d:be:54:7a:4e:9f:ad:d1:d0:af:7f:be:49
Fingerprint (sha256): bb:a7:fe:a2:28:92:ad:0a:37:36:dc:b4:73:b4:77:c0:e5:a0:d9:12:c6:a7:d3:7a:52:6a:b8:4e:38:ae:4b:ec

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate thermalcoffeemaker.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for thermalcoffeemaker.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

thermalcoffeemaker.com

Other certificates including the domain name thermalcoffeemaker.com

(limited to 100 certificates)
austriainvest.org
www.thermalcoffeemaker.com
www.thermalcoffeemaker.com
www.ihimi.com
thermalcoffeemaker.com
thermalcoffeemaker.com
www.thermalcoffeemaker.com
thermalcoffeemaker.com
thermalcoffeemaker.com
thermalcoffeemaker.com

Certificate

The complete raw certificate details for thermalcoffeemaker.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGZTCCBU2gAwIBAgISBCBphcK5PO3JGNUL/1UxKCrbMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMDMxODIzNDBaFw0y
MDAzMDIxODIzNDBaMCExHzAdBgNVBAMTFnRoZXJtYWxjb2ZmZWVtYWtlci5jb20w
ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDC3+X9f3Bn7mQ8wf8n5CGZ
iGRIeiGSvIIrao3gJq9QiN6UTTPMTzwKTuZlRsIgo28Ikroy9ejri9T/LgnfHHFs
34QCo80UZtgimC9Z8ozSNU9FGmZFtRUZg/q79e+y1ruMAl2U/Jw7o1kwnuQwYAiG
3aPU40J5pLtdyvZ/sdVnuMMTxGcjG64C/msGUoi3ApIutFl2H37VBiJIpGIjbQ9b
qOxhPRJpsHNBlfp/pALX3clh51I0ope4fMop4xX39esnmluT8kLkLcH3vVjzPFEg
BAHDHW/YUK5vNf62H6L6sVTAXU/0bnXJlWhTv8TEEOAXL+zzfVJFq3kkzUcqwdwo
9sUvSwDLCZTu/aKMfJ27adSKE1HugHomH+JGphF6DKW+yVvxGRC6tNYuIg7pETr5
1mXwylVxC/bZ8EZTlFQhEJf5OK6NrJL4VAfxzM07Bjwaikl/gv+XQ4rd/DqyUOfm
k3JA4liy0gfKgI0DDwKeOi9SJbulEmHU9NaXWvIXqUVs/CurVakqHDcnTw/To2M1
pg8NQb53X1mC5F2/HlfI9hNztA/6l2m+qgLaNjyVEaso531DTgPRswf4RUWxeMsd
qTmGnePLlusWEaPx+jDCc7FrkckyrL8plUx8RLb+ocTS6fyCdzf/I3m3Pt2m77HP
MGJnQ+2Wh3tkYu7R1a3POwIDAQABo4ICbDCCAmgwDgYDVR0PAQH/BAQDAgWgMB0G
A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud
DgQWBBSdlkf00HO6JDHxWqi/LRv8UthQzjAfBgNVHSMEGDAWgBSoSmpjBH3duubR
ObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9v
Y3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9j
ZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMCEGA1UdEQQaMBiCFnRoZXJtYWxj
b2ZmZWVtYWtlci5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMB
AQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEF
BgorBgEEAdZ5AgQCBIH2BIHzAPEAdgBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkG
jbIImjfZEwAAAW7NN9yoAAAEAwBHMEUCIQDWBM6F5pDZEBs5jlANSDHt61NFtJEo
gTT0xCLiAxsgAAIgdG+eNSNxYgeb5gBVI0JWqMXyaihGpFfaemkNMV+RmPgAdwAH
t1wb5X1o//Gwxh0jFce65ld8V5S3au68YToaadOiHAAAAW7NN9ygAAAEAwBIMEYC
IQCMPI+Lwt/XrKc2QSmrlW1Z+WfHLCCLasynqRuSXhaEPwIhANZjoKbAvv85eopX
tZKYnEIyKleaFkGJ4uQR754P7sb3MA0GCSqGSIb3DQEBCwUAA4IBAQAxZcQHNuTY
Dayuw56IbVtyV/mGFaLyIJEqhHIEBjzZs4xRZf9Aqi2K3z2S8vkl2KELwpErQfb4
Lg4PxRkCJ5ypv+2hL34RyAmudDgp9ArcM3T86rRn4oZpY704+bNXsCsBEQoXYjUp
OH+tKtA4b/4TTLlz7N5nMYHt+tLiSjaIH9XgabdhRFekGKEOCnZhDYfSbg6uEukj
oSN2XeIoxwAlz5tJBTzUt3PFuCqvCfEgdDjEUjiG9qg+SB6rNUKyDzKFcUeoSDDS
uea+xYsbw+uOblC6gxCHeGRy/+QVSvZUtSkpm1NUme6SidRRi2OhJaPQ+/VdYeUz
wiuNBNAqz8Jj
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 359478442933014148455278310376162627955419
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-03 18:23:40 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-02 18:23:40 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thermalcoffeemaker.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 795019018635839729059040738307851766414801833578507171425235805734435305734132891364591644944721979705837063522587808167796544834053612027736559466066921375038837100081765817770082388186893773848745679131698392714380594240614485933070097127469124165136851095291720182182436997665375566350163739790095876750647953324861246057752107936769496728103224892296214672174967182550412322044249322515079355890678088373142500718772721494754284371384972190712215350244835313392123430174782863516146066254477468390888923483924869352756385172945293758314547150760338909147365362507532704599788718067645702502693232218254796849521746247009449397493550478084035086578128623319342018997552454908456733253011095794082535885026296870677119160283102771430175756679353854838105020100286862683354180320992120285321189555314222399242623802422036339150587264823587752184580178956393041522076564087869535755684498016784635928131678334246407002770809263862463854904302718236668439965206245139466820703333533403477797885172733090469963552801488972923842850239557921180713223832499250716248143543509572587052331705599919842554229974764636958541231593844720342015364892782288317978451146144144011624766515684047490879505849600521297325844531993556552621929385787
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							9d9647f4d073ba2431f15aa8bf2d1bfc52d850ce
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thermalcoffeemaker.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016ecd37dca80000040300473045022100d604ce85e690d9101b398e500d4831edeb5345b491288134f4c422e2031b20000220746f9e35237162079be60055234256a8c5f26a2846a457da7a690d315f9198f800770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016ecd37dca000000403004830460221008c3c8f8bc2dfd7aca7364129ab956d59f967c72c208b6acca7a91b925e16843f022100d663a0a6c0beff397a8a57b592989c42322a579a164189e2e411ef9e0feec6f7
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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