orens.coffee
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:09:f4:45:ec:ba:01:32:45:f0:32:a5:54:a2:84:a3:b7:4e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=orens.coffee
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:09:f4:45:ec:ba:01:32:45:f0:32:a5:54:a2:84:a3:b7:4eSerial Number (int): 264724093798409419438159311733742811461454
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 0d:06:7a:ac:8c:45:5f:93:08:8c:87:40:32:cc:a8:b7:9e:b5:52:f9
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ee:ef:9b:61:9f:15:02:2d:0f:91:60:b8:e8:a5:24:74:08:06:15:63
Fingerprint (sha256): d5:e6:99:fb:82:e9:f1:89:83:21:87:61:eb:a0:ee:fc:23:4b:5f:ca:8a:4c:74:73:49:3c:a9:d1:04:9a:da:a6
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate orens.coffee
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for orens.coffee
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
orens.coffee
Other certificates including the domain name orens.coffee
(limited to 100 certificates)
custom.place
www.montrealexpos.net
www.total-eclipse.cc
www.desmoinesstemcelldoctor.com
dentistrydubai.ae
exploremate.com
insectrepellant.organic
www.blueletter.bible
bookers.bid
www.seld.nyc
donovansmith.com
plantbasedprotein.ca
slot55.ca
tldr420.com
www.action-painting.com
orens.coffee
orens.coffee
www.sportsmedicinemexico.com
stgeorgeautomobile.com
worldchampionshipgaming.com
randman.com
jointpaindc.com
www.orens.coffee
epik7.com
www.montrealexpos.net
www.total-eclipse.cc
www.desmoinesstemcelldoctor.com
dentistrydubai.ae
exploremate.com
insectrepellant.organic
www.blueletter.bible
bookers.bid
www.seld.nyc
donovansmith.com
plantbasedprotein.ca
slot55.ca
tldr420.com
www.action-painting.com
orens.coffee
orens.coffee
www.sportsmedicinemexico.com
stgeorgeautomobile.com
worldchampionshipgaming.com
randman.com
jointpaindc.com
www.orens.coffee
epik7.com
Certificate
The complete raw certificate details for orens.coffee in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgISAwn0Rey6ATJF8DKlVKKEo7dOMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMjYwODMwNDVaFw0y MDA2MjQwODMwNDVaMBcxFTATBgNVBAMTDG9yZW5zLmNvZmZlZTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBALbl1/eZzTF9ZKGIam9OaULwy3hGTwmQnTfc p8WDEtQu0zq2J4HbwUzNxmigypgI8kTcVM/4K9HtKU+SV1trHE1XvQD57/ucKI13 coSBuTKO3VUnrn0nQsikim+rcTr79EZ7tNCpL8L5zjFOmphlug9UCg7yUXO3HUXv +ELpwRh/ub9TSKqkB/9P56Nb2kHlIQj5WMOklCl+E63Dh7g1y3PTo73tOQnS2Qzf l6TBuqa58rXbtn0VCJs1xea+mrOATkRZAXwYKgEK66512KCBCyTGIxXVR8KbecZC VqYvNMaNEU9uotuw+Na4Q3/o9xqznwlL3ayZWRSeEZHM/F+Iavvz7J0isdsnI26H VfZ7wJ0iuziHJNzgo+KZ+FKBKUiMDMJYHlK81BR03am+fJ/ll43k+M1oGyxkqfv5 oaRNwSV6AlC5cyxR60G84txSdVP1KheTCdbDFjFcfTm9miLe0a5SyCC88M0yn3/3 Zs23ETON57a0LODey762e6S2ZBX1Ra+NqMyKBni5uGlV1cdth1sWS7ivgWXhruL7 T6RUsAaUxZFxo2qBqzsXMsGeeyhhGIzs7Svq7TxzNqe+2Y7BJ6AYff+6Gru4XkjC ZMC+kWCmsAv8P4+1N0hlaMpEIrIQEj2b+50PTtddmwighpR7N4Am59dpiowXC77Q 4w32KouZAgMBAAGjggJjMIICXzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFA0GeqyM RV+TCIyHQDLMqLeetVL5MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMb3JlbnMuY29mZmVlMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBgYKKwYBBAHWeQIEAgSB9wSB9ADy AHcAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFxFi4AUQAABAMA SDBGAiEApJVpxGar+Jwagxi8q2CoO4xmd+EWrMLYH2aykaHLhjQCIQC2UZarxz/x GUKrDBM5W7SNoPEEaLzhRWj32PSnN2MpwwB3AG9Tdqwx8DEZ2JkApFEV/3cVHBHZ AsEAKQaNsgiaN9kTAAABcRYuAJAAAAQDAEgwRgIhAON0nOXaJv6YCmo8ImEuAk8V 3EYRtiVIprmcOTcHcpdiAiEAkKBSzjS6EO+O/OnKen72GntrIoLD5HWr5E8oli+R 6lQwDQYJKoZIhvcNAQELBQADggEBABmN4aGjSpPJVPyqtnVCp4Y2rywsklMULHHt UPYUA/R+J3Qas8S04uZFcWRh7IlY7/u8eNc6e+7i4tVn9cu0SjutdhFyve6aRoVU gGYHxBp2rIygLGQC7fq660zaj2CuNZv8JcZIMcP9AwjP8YM6bx+t0Ibtf9qnZ7Rp NqcJ7hcpT7x2h1uBOM1coZpl2s52vzmlr9u1X6KabbSdg3ElNRsIoxzzfWNQ8EGj 9NfsqIviwiiQn2QpgVOC2Zoxc0FU/RnS8cc6kwmPasdNZJLPMrish+AQtdJZ7GVX vxe1s0gTKwrcNX9jfWka8FqQUuZtyEIrmKskjf5NahRSqyqHDFs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtuXX95nNMX1koYhqb05p QvDLeEZPCZCdN9ynxYMS1C7TOrYngdvBTM3GaKDKmAjyRNxUz/gr0e0pT5JXW2sc TVe9APnv+5wojXdyhIG5Mo7dVSeufSdCyKSKb6txOvv0Rnu00KkvwvnOMU6amGW6 D1QKDvJRc7cdRe/4QunBGH+5v1NIqqQH/0/no1vaQeUhCPlYw6SUKX4TrcOHuDXL c9Ojve05CdLZDN+XpMG6prnytdu2fRUImzXF5r6as4BORFkBfBgqAQrrrnXYoIEL JMYjFdVHwpt5xkJWpi80xo0RT26i27D41rhDf+j3GrOfCUvdrJlZFJ4Rkcz8X4hq +/PsnSKx2ycjbodV9nvAnSK7OIck3OCj4pn4UoEpSIwMwlgeUrzUFHTdqb58n+WX jeT4zWgbLGSp+/mhpE3BJXoCULlzLFHrQbzi3FJ1U/UqF5MJ1sMWMVx9Ob2aIt7R rlLIILzwzTKff/dmzbcRM43ntrQs4N7LvrZ7pLZkFfVFr42ozIoGeLm4aVXVx22H WxZLuK+BZeGu4vtPpFSwBpTFkXGjaoGrOxcywZ57KGEYjOztK+rtPHM2p77ZjsEn oBh9/7oau7heSMJkwL6RYKawC/w/j7U3SGVoykQishASPZv7nQ9O112bCKCGlHs3 gCbn12mKjBcLvtDjDfYqi5kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 264724093798409419438159311733742811461454 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-26 08:30:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-24 08:30:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'orens.coffee' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 746158033537492837659263179433910431759719989527408464138384488623828219719111218446741008765742236375094580785391197313278914968397832382915381354073844238342939981402679181636824570689084990345776343482718920671477617142174450375705821489873847232191183774114919719208092943895334565656051392821910137306546794022194401128576034754959347162466430178808053685528133449049699765708135394077154070286729924880522281499023216405454598849684972264329805058628875816026799014186229648767499957544155494657776837476827799279327857008801326427617044150998504422568322380859785649978192014083368804485284298910547194912557705474386154901616609990592863966116847860810145205548310920492321931846091610622926259650191666415335493625499748346513924554794457031706885187100055840940118668735290584656444609148096160755315517367588323786715167289055428222680284478007823444762743305674561770221251727013271543317348166928856811200993312917887229177175810149101223387532440744250475018816924998823484269618264918071531977460853495408179369124642811877665523197588736803921952427549996620835151397048270188235387677297018237220997293845436267254542065757276624260007406058231324083394285574443869520004018910611063158800756836972438791405779454873 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0d067aac8c455f93088c874032cca8b79eb552f9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'orens.coffee' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000171162e00510000040300483046022100a49569c466abf89c1a8318bcab60a83b8c6677e116acc2d81f66b291a1cb8634022100b65196abc73ff11942ab0c13395bb48da0f10468bce14568f7d8f4a7376329c30077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d91300000171162e00900000040300483046022100e3749ce5da26fe980a6a3c22612e024f15dc4611b62548a6b99c39370772976202210090a052ce34ba10ef8efce9ca7a7ef61a7b6b2282c3e475abe44f28962f91ea54 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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