opticafe.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:ec:d4:39:a0:ea:38:68:43:2d:c8:1e:4b:60:89:7c:2e:4e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=opticafe.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:ec:d4:39:a0:ea:38:68:43:2d:c8:1e:4b:60:89:7c:2e:4eSerial Number (int): 341925591948391939786141975151815771827790
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 73:da:e2:34:b4:e2:a3:23:96:12:ef:73:8e:a7:18:c6:4d:73:45:b0
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ef:53:31:ec:ac:3c:4f:d2:ff:1c:84:fd:27:22:c6:ad:33:4d:a5:1c
Fingerprint (sha256): c7:ec:e0:27:4e:84:1e:de:6b:8f:45:83:42:0d:a4:db:9a:be:67:5e:79:a9:9b:27:39:99:2c:0a:27:85:30:ba
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate opticafe.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for opticafe.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
opticafe.com
Other certificates including the domain name opticafe.com
(limited to 100 certificates)
cfuco.com
lillianna.org
opticafe.com
www.cjrco.com
polystrong.com
www.iwantdad.com
www.sandiegojointpain.com
www.opticafe.com
www.opticafe.com
www.hotelge.com
pipelite.com
opticafe.com
emoji.bible
opticafe.com
opticafe.com
qualityaccounting.com
ilovecbd.org
opticafe.com
celinajade.com
www.opticafe.com
lillianna.org
opticafe.com
www.cjrco.com
polystrong.com
www.iwantdad.com
www.sandiegojointpain.com
www.opticafe.com
www.opticafe.com
www.hotelge.com
pipelite.com
opticafe.com
emoji.bible
opticafe.com
opticafe.com
qualityaccounting.com
ilovecbd.org
opticafe.com
celinajade.com
www.opticafe.com
Certificate
The complete raw certificate details for opticafe.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISA+zUOaDqOGhDLcgeS2CJfC5OMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMTUyMDQ2NTJaFw0y MDA1MTUyMDQ2NTJaMBcxFTATBgNVBAMTDG9wdGljYWZlLmNvbTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAOOUM1ALcZEYns0ec9erYHk4wRWTsUCVOvtG vjysQZSn5rFCC/KSE7mUcQHTCP10k+/lzAkY1KknSXbyL1sa9CQUkC+oTkqGG5NI xB56PCZRKn/mjOLim7GbQp+ACtv87P8AU2E4sCJPvge3am5qImAA7oqJFaDwGi+5 tkmEdKxXOjgrZfXK3UjgY7c16ItkmlYxPJ8B8YHwnDc5CkmK5RjzdZWWhxdlryoL r1ZVUKxRJXH3wjtAGSfANlL2ekqy5tWH5/OA2ufzHbpa804IUrtChxBOZKkkJ0lp wA5lRjTDYXIBHN1JIyUfxiGTOOCP8j59g4oBZ3oOHYXLpsPV9xChZEvPg1hVIHwD Cki2qnNVaUnp24p6P3Z9m14GmhUeMjHcokZYB6K+bQybm4/bKnPdwJxni3h/bf1W 0EDi0/IF3ZjVSfNTbkpa8lgckXPUZ0YrOVGz0WuJyC2GZN6sDBSO5opcYMAA2Pu+ zbSgkikD6SXPhSskKMyqbd6HoNNYFccRqJURWVX7Eb60z5/LxooADCLl/R5kh66Y or4jNiJNtQEeuX9lZr4yYr321UVfi05EXnTRE4NxYAf8f7cHC8l9hx7omXDdnlgJ wKuRW4aVCDj0j2iyrK5uJpe5dGLgGHu17wErmuM0TXoFQyuWmueBX7lfihAsdgNu lW3I6hbhAgMBAAGjggJiMIICXjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFHPa4jS0 4qMjlhLvc46nGMZNc0WwMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMb3B0aWNhZmUuY29tMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDx AHYAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFwStGOpAAABAMA RzBFAiBABioSDE916hgu8XQx4uW6k2+MWonZKwMhfDgO4/vPowIhAO9BD4AkkFi0 hqMMYXXI83QKHL2K6PRqyq3GGuGmwrHgAHcAb1N2rDHwMRnYmQCkURX/dxUcEdkC wQApBo2yCJo32RMAAAFwStGPuwAABAMASDBGAiEAv1NIEnay5lGdzoVgFCizwb2L JODgWo8Rxr8XMJsEH1UCIQD8NQ/poDmHzB1HbwZAWjsLRuyTOFR16p7XghbDfY90 WTANBgkqhkiG9w0BAQsFAAOCAQEAKml6jjGxjJg6ELOneUVoF+2HL64BgRVp/4f4 arKPoqu+HTPMaAKvMc2Aji098P6fj2bElCDZFpS5jCZFlTs4D53QuKbMFwvyxBmd GR9Psi4mzGsPq1G4H0CrHqm/zLvc6p6rueIKyoZzztAHEBi5frH9aN1GTusyd/jU HoMRnVMS5AI/v46cdI4b1bzPIeQDHvUDPVH7do5LuAW2pT5nKyfsJlF+pSuNxZ2o SCnrbNegSadWwoXHM4+WNo7jZ+5SlPOdaTRAHQRzwx3ZNkFUr0XAV53BZzrzxJqM H5Y+iwwHj0vZZr34ETNs3WfHC8y4uhPpt0as/46EKb8Xmv1orw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA45QzUAtxkRiezR5z16tg eTjBFZOxQJU6+0a+PKxBlKfmsUIL8pITuZRxAdMI/XST7+XMCRjUqSdJdvIvWxr0 JBSQL6hOSoYbk0jEHno8JlEqf+aM4uKbsZtCn4AK2/zs/wBTYTiwIk++B7dqbmoi YADuiokVoPAaL7m2SYR0rFc6OCtl9crdSOBjtzXoi2SaVjE8nwHxgfCcNzkKSYrl GPN1lZaHF2WvKguvVlVQrFElcffCO0AZJ8A2UvZ6SrLm1Yfn84Da5/MdulrzTghS u0KHEE5kqSQnSWnADmVGNMNhcgEc3UkjJR/GIZM44I/yPn2DigFneg4dhcumw9X3 EKFkS8+DWFUgfAMKSLaqc1VpSenbino/dn2bXgaaFR4yMdyiRlgHor5tDJubj9sq c93AnGeLeH9t/VbQQOLT8gXdmNVJ81NuSlryWByRc9RnRis5UbPRa4nILYZk3qwM FI7milxgwADY+77NtKCSKQPpJc+FKyQozKpt3oeg01gVxxGolRFZVfsRvrTPn8vG igAMIuX9HmSHrpiiviM2Ik21AR65f2VmvjJivfbVRV+LTkRedNETg3FgB/x/twcL yX2HHuiZcN2eWAnAq5FbhpUIOPSPaLKsrm4ml7l0YuAYe7XvASua4zRNegVDK5aa 54FfuV+KECx2A26VbcjqFuECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 341925591948391939786141975151815771827790 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-15 20:46:52 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-15 20:46:52 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'opticafe.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 928440941903364190426709055926151532374592076106430078206369681754021679290598552563025178308389425067764717997694597395010754072927527131148210880833051108278167296547385010694009420267160304142397731427840095552171002844548282334795011240240419889338192552394165092390004341940521251337372990943110374812237449249469078180892966964617461937219886200853192800828090043428127752597555859746961314605963449124085361939731272020212863941756387090279814120339073616209232518236413876199964176471306741554613007221981239248090008002104363724734885293189852865576504509605090003268517222648892024992477539689830288934870066177628419268549590663328305991175384181570024852990581046922155256326306398952122275523812060260819491049373310822595573253308545701925024253302932829768775816205325818976701387288359550132338467779623585934789437051364651812930309837319134735992738262915525711015576367664512708276603453435642953087315854415116155642154699032016702154346869982766794899127349375982304448429829692560935228394845105982546290680485008648020297857160881926527593042704847355457902970798739483101084354856512482441727994869014528326455391654532669779712412834733610320039171712531613825348333450212667045492389944307501861879149106913 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 73dae234b4e2a3239612ef738ea718c64d7345b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'opticafe.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001704ad18ea40000040300473045022040062a120c4f75ea182ef17431e2e5ba936f8c5a89d92b03217c380ee3fbcfa3022100ef410f80249058b486a30c6175c8f3740a1cbd8ae8f46acaadc61ae1a6c2b1e00077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d913000001704ad18fbb0000040300483046022100bf53481276b2e6519dce85601428b3c1bd8b24e0e05a8f11c6bf17309b041f55022100fc350fe9a03987cc1d476f06405a3b0b46ec93385475ea9ed78216c37d8f7459 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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