bestofcitycards.com
Issued by R3
About this certificate
This digital certificate with serial number 04:d0:a6:7d:bc:ac:3e:1e:8d:05:d9:fb:e9:77:b6:73:b9:77 was issued on by Let's Encrypt.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bestofcitycards.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:d0:a6:7d:bc:ac:3e:1e:8d:05:d9:fb:e9:77:b6:73:b9:77Serial Number (int): 419449180757743274318545747451109384108407
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 18:11:04:ad:d2:17:eb:16:26:0c:2f:1f:04:90:e9:b2:1a:e1:96:3e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ee:c0:24:94:5e:f8:6d:12:14:e8:19:a9:72:d6:7d:e3:bb:e6:db:ee
Fingerprint (sha256): c7:ca:90:64:01:76:73:d5:91:0f:7f:af:69:ec:12:78:03:13:24:e1:6a:f0:6c:8a:43:f9:59:e7:d6:f8:f5:3b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate bestofcitycards.com
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bestofcitycards.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bestcitycard.com
bestcitycards.com
bestofcitycard.com
bestofcitycards.com
www.bestcitycard.com
www.bestcitycards.com
www.bestofcitycard.com
www.bestofcitycards.com
bestcitycards.com
bestofcitycard.com
bestofcitycards.com
www.bestcitycard.com
www.bestcitycards.com
www.bestofcitycard.com
www.bestofcitycards.com
Other certificates including the domain name bestofcitycards.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for bestofcitycards.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgISBNCmfbysPh6NBdn76Xe2c7l3MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA1MjIxOTU0NDZaFw0yMzA4MjAxOTU0NDVaMB4xHDAaBgNVBAMT E2Jlc3RvZmNpdHljYXJkcy5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDFG2rH27WdyfjgSgWyR0x1E3+L9m13gAj/DUpLoLOTYNQa35MRBQfbZ7yh 1EcwwcE7qfcEN7J/dvHljYy3XavZ2WUW4aRk/+yDbodg3Z1BcSJZYjCLM8VP6BtK WEw8x2yMLxPd4QQ9bsDI0bVGW4xUFkkLxgwf3ya2s5Th6dGcFTx9Lq1iwCVli/dG 0l+yOLWfM7n2idaocZ5QOIXgBt7ua2bukMQwSMeMuuY8w9s+soNMr9vDdp989zxO tizZlqsoP0Jaa9dzBvkXKN2GTKcMcFWHsLLTfx5spRVVlJbkLqcy+gKem1GDN9Ro AG8fFZ1caGAYjJELnLebBXAksyk5AgMBAAGjggLnMIIC4zAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAw HQYDVR0OBBYEFBgRBK3SF+sWJgwvHwSQ6bIa4ZY+MB8GA1UdIwQYMBaAFBQusxe3 WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0 cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5j ci5vcmcvMIG3BgNVHREEga8wgayCEGJlc3RjaXR5Y2FyZC5jb22CEWJlc3RjaXR5 Y2FyZHMuY29tghJiZXN0b2ZjaXR5Y2FyZC5jb22CE2Jlc3RvZmNpdHljYXJkcy5j b22CFHd3dy5iZXN0Y2l0eWNhcmQuY29tghV3d3cuYmVzdGNpdHljYXJkcy5jb22C Fnd3dy5iZXN0b2ZjaXR5Y2FyZC5jb22CF3d3dy5iZXN0b2ZjaXR5Y2FyZHMuY29t MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB 9ASB8QDvAHYAtz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGIRT49 FAAABAMARzBFAiEAvdt2wsLzgLoqdlsWpF4BQKiR5I/yOLO3TwaBU9fulLQCIDZY dVdD7GI6UzzMVEztwk0nFh+MzA4DOpDH1/XOmfA2AHUAejKMVNi3LbYg6jjgUh7p hBZwMhOFTTvSK8E6V6NS61IAAAGIRT49HwAABAMARjBEAiAhV8z/hiu2HbaMC0/p dZxgFnG6Gr4vQwrHTuiEYzys0wIgVXsIFJuoC6wkli2IXIFwq8tmPGcs8idiAgtU t2rA5ncwDQYJKoZIhvcNAQELBQADggEBAK+xp9SH6phSq2jHY/sQoDzEN+c0DxLb na9kDt1PPJKR8dUSUFbEtfIUoL5BYrPwnacJyM1q43Ny3XbU8ygQllzNRGCkS7Mm hKMnAA9cJ/EZ7aAmWIKLU6H1swc8Fz0eeHFrNAwykGXSzeLBUXqt64Px5mh5Nzbr otXST7Zb0DY4pJmXaR4MicCHuGKBymIz4KD7b/0Q/970Z2pmHo+e2zwDC2/hYbRW Nj3P2f8z6rlGcd+VVBr9YGAHRS48Eg6WZi0nuF8KOP7KXglZ+dck/Ppf32GtEz01 TiPx3XgsJD3XDTfI6ZV/SBd0EfB7QLyBzIECKdA7GDGwXUjkmA/sneE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxRtqx9u1ncn44EoFskdM dRN/i/Ztd4AI/w1KS6Czk2DUGt+TEQUH22e8odRHMMHBO6n3BDeyf3bx5Y2Mt12r 2dllFuGkZP/sg26HYN2dQXEiWWIwizPFT+gbSlhMPMdsjC8T3eEEPW7AyNG1RluM VBZJC8YMH98mtrOU4enRnBU8fS6tYsAlZYv3RtJfsji1nzO59onWqHGeUDiF4Abe 7mtm7pDEMEjHjLrmPMPbPrKDTK/bw3affPc8TrYs2ZarKD9CWmvXcwb5Fyjdhkyn DHBVh7Cy038ebKUVVZSW5C6nMvoCnptRgzfUaABvHxWdXGhgGIyRC5y3mwVwJLMp OQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 419449180757743274318545747451109384108407 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-22 19:54:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-20 19:54:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bestofcitycards.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24882465960180356000909096169149075474409920902430436924781347107656949203257768417917558103449577965066799629969148076436878121441616878135831971309053882896675361555957495385359231878654723609268272559158768697584733716056053240601966371155597280739035161567402218838683876920614199439231996392411731711892870972435004844173999128395593348140235442047656976107005605973710878778294181394910732226516507791547469868835810616759911779262662148758568094849297553165102508559681973925957795562584122579891219341555266404586714800789999830184471864333755690200430756330040061709656362351227217336100225131997119703623993 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 181104add217eb16260c2f1f0490e9b21ae1963e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (175 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bestcitycard.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bestcitycards.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bestofcitycard.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bestofcitycards.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bestcitycard.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bestcitycards.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bestofcitycard.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bestofcitycards.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000188453e3d140000040300473045022100bddb76c2c2f380ba2a765b16a45e0140a891e48ff238b3b74f068153d7ee94b402203658755743ec623a533ccc544cedc24d27161f8ccc0e033a90c7d7f5ce99f0360075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000188453e3d1f000004030046304402202157ccff862bb61db68c0b4fe9759c601671ba1abe2f430ac74ee884633cacd30220557b08149ba80bac24962d885c8170abcb663c672cf22762020b54b76ac0e677 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00afb1a7d487ea9852ab68c763fb10a03cc437e7340f12db9daf640edd4f3c9291f1d5125056c4b5f214a0be4162b3f09da709c8cd6ae37372dd76d4f32810965ccd4460a44bb32684a327000f5c27f119eda02658828b53a1f5b3073c173d1e78716b340c329065d2cde2c1517aadeb83f1e668793736eba2d5d24fb65bd03638a49997691e0c89c087b86281ca6233e0a0fb6ffd10ffdef4676a661e8f9edb3c030b6fe161b456363dcfd9ff33eab94671df95541afd606007452e3c120e96662d27b85f0a38feca5e0959f9d724fcfa5fdf61ad133d354e23f1dd782c243dd70d37c8e9957f48177411f07b40bc81cc810229d03b1831b05d48e4980fec9de1