myfoodlocal.com
Issued by R3
About this certificate
This digital certificate with serial number 04:41:08:00:9a:9d:88:e9:41:ff:d3:08:49:e2:0f:82:6f:5e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=myfoodlocal.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:41:08:00:9a:9d:88:e9:41:ff:d3:08:49:e2:0f:82:6f:5eSerial Number (int): 370578134536840538468419544988385162719070
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 86:f4:c5:74:6b:6c:85:0a:8d:28:81:cc:43:62:da:53:01:b9:fb:6a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 36:56:61:cc:a9:2f:df:bf:5b:85:a6:08:53:18:92:04:df:cf:e2:d2
Fingerprint (sha256): da:54:45:78:57:4f:14:f3:4a:bb:cf:e2:38:9c:01:e0:12:d1:48:7e:c8:fa:8a:f4:a9:ff:7b:fe:c8:53:b1:93
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate myfoodlocal.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for myfoodlocal.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
myfoodlocal.com
Other certificates including the domain name myfoodlocal.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for myfoodlocal.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6jCCBNKgAwIBAgISBEEIAJqdiOlB/9MISeIPgm9eMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMjcxNjExMzVaFw0yNDAyMjUxNjExMzRaMBoxGDAWBgNVBAMT D215Zm9vZGxvY2FsLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB AKijtlPDPArrtjMm6YrD8PfAiwO5ZJ820xQJRUI/h/Dt1AcEJLFbbx9+vTymqZgU 0GjrlU803Wbj7pzFmgTX5KbrcQjklcN7W93fNVJH+x5Pu6GUswle9ZfAVR4YAEnh JmfzJ85fmWlk1lOldU96YFeAuxi2iHkx54OR5RmvzasGyjda0MxedxrxFZMWCN6g fksB3fOOGjARhyc1ho8tdRZR/B9appEiu9mXJc47GvEGCkK5yQFFQcm+5Jc+vDcG mfGX/4EPV6NwPvqFe3RDwn6X8osdWOxAKIpvTpBdyUqy4mU9U1sxu2f4V7elPA2v EX7XwaBmoXwcePzcmIFdjjVl7siMzxaMRNL+Mb1UxGh0i0twRBQDZgFAxSaFqcAy 0ivpJ4TRXlhHXQNDtKt4CvX8xZYdzHfzVlRV6pYfJPwkJJTMTJxMLxMTAwaafMU3 Rv71AxF0kKhsdJaXqnbnOQPKuV8IHSdiA0FUckK6e1xq0EhPdmn7uhRtBsVmOxxH fxOVgEC1HJfLnjgUPwtaEeOyP5VAC1pfYyHLnHt/gyllUstRyqcmrfWs5ZNIR9gH UCyEvBineIBiQn2BpFYGwWw0V8+7TTZIthKri9C3Lm0So3yrKFWz3wTlXyjD3i7J X2B8pVz0q/95jK4x0bOoX9tZdQmwONFC6XyNvMPspm4NAgMBAAGjggIQMIICDDAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFIb0xXRrbIUKjSiBzENi2lMBuftqMB8GA1Ud IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw Oi8vcjMuaS5sZW5jci5vcmcvMBoGA1UdEQQTMBGCD215Zm9vZGxvY2FsLmNvbTAT BgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2AEiw 42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjBHD0mkAAAQDAEcwRQIh APIrMimOsvVs6NnRTGNnqBkwviWZdMhF46QyTk2h2P5+AiANjWcPfayhlhg7RA+x vTyjMMEGX4NwUf/nF/fy3KODxgB1AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf 5mdMWjp0AAABjBHD0sAAAAQDAEYwRAIgIGxgrLZ+auCCewxH55ZkF1Zi1XCWB9Qf xvZFl3m51lUCIB0CTGQvQ3Nttulakjcnuj74dnzPB9fWsqRnEBI5u7uDMA0GCSqG SIb3DQEBCwUAA4IBAQCpeQAOVT36eyGdTYvSBSi8cpH5u0rC1nGxxHrRiEztcjD6 fNBFqSv9qEqFUGusENeMB4vy8PzwAO7pH7GIwIpMM1YGX1w7AQZERVktHwneV38J kW+64XY1qhALozArHCRB+S8ToE91kpUsrXrC3CqUqfYJDxV8+UNuPkU6v+qlr3/w EXnBMIB3FFdyMyWPWEyr/+IHAKSlK3ZfEirFcyc+COf+vkU7z38aeIyFwblrknKn PyCEEWOuUFLdRj09eOXZ24ipnBROb0D8f3ue9YjJrnpZuTBKjgnbdq9pQwHXdk79 9JPlYwRsaD3HezrLlW1yzXTOYrb7whIW4tKo7Wvk -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqKO2U8M8Cuu2MybpisPw 98CLA7lknzbTFAlFQj+H8O3UBwQksVtvH369PKapmBTQaOuVTzTdZuPunMWaBNfk putxCOSVw3tb3d81Ukf7Hk+7oZSzCV71l8BVHhgASeEmZ/Mnzl+ZaWTWU6V1T3pg V4C7GLaIeTHng5HlGa/NqwbKN1rQzF53GvEVkxYI3qB+SwHd844aMBGHJzWGjy11 FlH8H1qmkSK72Zclzjsa8QYKQrnJAUVByb7klz68NwaZ8Zf/gQ9Xo3A++oV7dEPC fpfyix1Y7EAoim9OkF3JSrLiZT1TWzG7Z/hXt6U8Da8RftfBoGahfBx4/NyYgV2O NWXuyIzPFoxE0v4xvVTEaHSLS3BEFANmAUDFJoWpwDLSK+knhNFeWEddA0O0q3gK 9fzFlh3Md/NWVFXqlh8k/CQklMxMnEwvExMDBpp8xTdG/vUDEXSQqGx0lpeqduc5 A8q5XwgdJ2IDQVRyQrp7XGrQSE92afu6FG0GxWY7HEd/E5WAQLUcl8ueOBQ/C1oR 47I/lUALWl9jIcuce3+DKWVSy1HKpyat9azlk0hH2AdQLIS8GKd4gGJCfYGkVgbB bDRXz7tNNki2EquL0LcubRKjfKsoVbPfBOVfKMPeLslfYHylXPSr/3mMrjHRs6hf 21l1CbA40ULpfI28w+ymbg0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 370578134536840538468419544988385162719070 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-27 16:11:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-25 16:11:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'myfoodlocal.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 687989139244966438913863488330637785575712693488038567921897701366460915203366872734185351000961848824710895199905421390628324999638629338362462905026601182117041089729338792437721759897364749401821716349448544233265479360202787114357249357382538950280259878551534264642925252818365173594332782230476762631400556216958666662511488438404362463021939684755065495334706325089244538776553236661596690466784186491122956442459550300794353597796181579075585627864665049583992056935650495078217285124574962704177467931649291269631770965865141401376352121429188160569324657892827172772936211935940120874013343375828234931794805889025206684310841355270028833022426113709563040730685402706268084892301884862864970887161241227772672144179638121302046004890284272792015107916403691239389754665912365355476079441404481411173247038128596530390205908124282123146225460339745087965238949900250928144485753999819822146428570224762037735343459180302458625764530368024165872754844203864334904497408734428324109702155189960832688241410994363506911475429947602776051995421266217211317817593242862730163565637754945684934865784480181797464180583104615221041281510160372731911046153702378268060999718104417117555562555055764384983176304209318135693845097997 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 86f4c5746b6c850a8d2881cc4362da5301b9fb6a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myfoodlocal.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c11c3d2690000040300473045022100f22b32298eb2f56ce8d9d14c6367a81930be259974c845e3a4324e4da1d8fe7e02200d8d670f7daca196183b440fb1bd3ca330c1065f837051ffe717f7f2dca383c600750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018c11c3d2c000000403004630440220206c60acb67e6ae0827b0c47e79664175662d5709607d41fc6f6459779b9d65502201d024c642f43736db6e95a923727ba3ef8767ccf07d7d6b2a467101239bbbb83 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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