myfoodlocal.com

Issued by R3

About this certificate

This digital certificate with serial number 04:41:08:00:9a:9d:88:e9:41:ff:d3:08:49:e2:0f:82:6f:5e was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=myfoodlocal.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:41:08:00:9a:9d:88:e9:41:ff:d3:08:49:e2:0f:82:6f:5e
Serial Number (int): 370578134536840538468419544988385162719070
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 86:f4:c5:74:6b:6c:85:0a:8d:28:81:cc:43:62:da:53:01:b9:fb:6a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 36:56:61:cc:a9:2f:df:bf:5b:85:a6:08:53:18:92:04:df:cf:e2:d2
Fingerprint (sha256): da:54:45:78:57:4f:14:f3:4a:bb:cf:e2:38:9c:01:e0:12:d1:48:7e:c8:fa:8a:f4:a9:ff:7b:fe:c8:53:b1:93

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate myfoodlocal.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for myfoodlocal.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

myfoodlocal.com

Other certificates including the domain name myfoodlocal.com

(limited to 100 certificates)
myfoodlocal.com
myfoodlocal.com

Certificate

The complete raw certificate details for myfoodlocal.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 370578134536840538468419544988385162719070
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-27 16:11:35 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-25 16:11:34 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'myfoodlocal.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 687989139244966438913863488330637785575712693488038567921897701366460915203366872734185351000961848824710895199905421390628324999638629338362462905026601182117041089729338792437721759897364749401821716349448544233265479360202787114357249357382538950280259878551534264642925252818365173594332782230476762631400556216958666662511488438404362463021939684755065495334706325089244538776553236661596690466784186491122956442459550300794353597796181579075585627864665049583992056935650495078217285124574962704177467931649291269631770965865141401376352121429188160569324657892827172772936211935940120874013343375828234931794805889025206684310841355270028833022426113709563040730685402706268084892301884862864970887161241227772672144179638121302046004890284272792015107916403691239389754665912365355476079441404481411173247038128596530390205908124282123146225460339745087965238949900250928144485753999819822146428570224762037735343459180302458625764530368024165872754844203864334904497408734428324109702155189960832688241410994363506911475429947602776051995421266217211317817593242862730163565637754945684934865784480181797464180583104615221041281510160372731911046153702378268060999718104417117555562555055764384983176304209318135693845097997
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							86f4c5746b6c850a8d2881cc4362da5301b9fb6a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myfoodlocal.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c11c3d2690000040300473045022100f22b32298eb2f56ce8d9d14c6367a81930be259974c845e3a4324e4da1d8fe7e02200d8d670f7daca196183b440fb1bd3ca330c1065f837051ffe717f7f2dca383c600750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018c11c3d2c000000403004630440220206c60acb67e6ae0827b0c47e79664175662d5709607d41fc6f6459779b9d65502201d024c642f43736db6e95a923727ba3ef8767ccf07d7d6b2a467101239bbbb83
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00a979000e553dfa7b219d4d8bd20528bc7291f9bb4ac2d671b1c47ad1884ced7230fa7cd045a92bfda84a85506bac10d78c078bf2f0fcf000eee91fb188c08a4c3356065f5c3b01064445592d1f09de577f09916fbae17635aa100ba3302b1c2441f92f13a04f7592952cad7ac2dc2a94a9f6090f157cf9436e3e453abfeaa5af7ff01179c130807714577233258f584cabffe20700a4a52b765f122ac573273e08e7febe453bcf7f1a788c85c1b96b9272a73f20841163ae5052dd463d3d78e5d9db88a99c144e6f40fc7f7b9ef588c9ae7a59b9304a8e09db76af694301d7764efdf493e563046c683dc77b3acb956d72cd74ce62b6fbc21216e2d2a8ed6be4