pastrypress.com
Issued by R3
About this certificate
This digital certificate with serial number 03:71:3a:99:ee:fa:5a:77:85:47:bf:05:5c:08:ef:6c:5a:12 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=pastrypress.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:71:3a:99:ee:fa:5a:77:85:47:bf:05:5c:08:ef:6c:5a:12Serial Number (int): 299866659749570191700606941177637004663314
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f6:eb:3e:7e:85:ba:a3:bf:b6:b2:9d:36:4e:a4:ec:b6:77:c3:ea:38
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): e2:45:e7:d5:8b:f2:2b:cd:83:df:41:d6:7a:c1:28:d1:68:2c:57:68
Fingerprint (sha256): e1:3f:43:fa:18:35:63:2b:7e:86:9e:92:69:2c:5f:21:ca:2a:b8:7a:11:aa:14:15:c7:99:63:f1:0b:c5:1a:bd
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate pastrypress.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pastrypress.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pastrypress.com
Other certificates including the domain name pastrypress.com
(limited to 100 certificates)
www.dentistcomplaints.com
www.rosalia.co
www.thoreast.com
advertisys.com
www.pastrypress.com
www.proactivepathology.com
dotcourier.com
www.gojeddahpass.com
cretheus.com
www.alabamarehabcenters.com
www.shyowlsnest.com
lifesbestpractices.com
seattlemodularhomes.com
pacifictec.com
qualityengagementrings.com
airdropwallets.com
bhutanresort.com
www.leapfunder.co
smashsubscribeforever.com
pastrypress.com
pastrypress.com
www.azaelflores.com
sanfordautosales.com
www.decadentkitchens.com
samuraiapps.com
www.rosalia.co
www.thoreast.com
advertisys.com
www.pastrypress.com
www.proactivepathology.com
dotcourier.com
www.gojeddahpass.com
cretheus.com
www.alabamarehabcenters.com
www.shyowlsnest.com
lifesbestpractices.com
seattlemodularhomes.com
pacifictec.com
qualityengagementrings.com
airdropwallets.com
bhutanresort.com
www.leapfunder.co
smashsubscribeforever.com
pastrypress.com
pastrypress.com
www.azaelflores.com
sanfordautosales.com
www.decadentkitchens.com
samuraiapps.com
Certificate
The complete raw certificate details for pastrypress.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6zCCBNOgAwIBAgISA3E6me76WneFR78FXAjvbFoSMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMTgxNzE4MjhaFw0yNDAyMTYxNzE4MjdaMBoxGDAWBgNVBAMT D3Bhc3RyeXByZXNzLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB AKmkQunJG/PIcQE3VxDlThNWrwlKA8rcdFg4M0QCfk3SvpIRz3EFzuofTQybXYon HLAY3RUZvbPVNRDle1263/Kgs6k09DNTjwkN82vOq+CxSv+spT1UrkbvuIRUslDu M0DFhtdZwYBXg9WloZ8wW7ENMdZy7zA3MlN2WQiImpVn4wE7fEiLyq+AOH+wx4rM 5qrngb7IuKU16xFV4Iqqllg7a2eCMUoQZnrpERu4xZU/BgrGV1MLIAuJryamapmU ttMdIoJwIPNX57eYWnxbAX56Wd/wUjNyKhEbbAdWUCcuF0XyjSPcIOWtp4kKYkBa 27JnHKW6rk3B3LI4UXCEkklMWgWyC46Cf+n/Vhtg+xeZmjcaA2kkDQ1O8ycSP5+m CBO4mSp83Ml5sGWFQ2deWtpQUG28nyQQec7DVfKhpyIoZH2ZQzx8MbGOtsP8/lQr hYtKahBLmBcO2sBDVBaJgehioiFSonxwnGMFdAK20iCe1L03dNDrhTjRgzpV7zOP G1PLDLQu+uCzxn9a/n2VQBD6UeATPlvSabz3h0Bx/xdiXnpXXawCvikhLtxETv3y rCoxKzrc4oIc87lNnsRxGQhz+8Thb0/slrSIyIURmvZOWTxH5TcWuOfrWdP1Ed4q n1FncEqVlZcJCojIx9k2kAGJRLU9qH6heuM7KXfFSlotAgMBAAGjggIRMIICDTAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFPbrPn6FuqO/trKdNk6k7LZ3w+o4MB8GA1Ud IwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggr BgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRw Oi8vcjMuaS5sZW5jci5vcmcvMBoGA1UdEQQTMBGCD3Bhc3RyeXByZXNzLmNvbTAT BgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2AEiw 42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABi+On1CoAAAQDAEcwRQIg dGZ4z2spuJxT2fNhyF9GOZUJ7RjaszJH2v32l6DLQFcCIQDRNYtMLTaRYNPL1U7A d/H3agQEzXdhvOsWLEWulmIy6QB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FI WUZxH7WbAAABi+On1D8AAAQDAEcwRQIhAKjPESMGnFafsocLIIF8Nb0XiRClLyOk z71xsVfF+kJQAiAn3PEQ310XkH6SvQgjD19sMlgVoRnAoLr+9IS5Cd7/NDANBgkq hkiG9w0BAQsFAAOCAQEAjZJu++jnpJOukw0kEn/IugYDtGT5NKOsmnFcgBn7Gie3 H8mqOayyBiOzDXRD8QhHJ6vWASW4dyEDSneWOEZNZBtKALREIB8PAISyWa0RCu4m dof6sWrWPUA9PmqjWdyAhK6yUGdIgVbcKJ0SOFQU6CvbbWd/XdN3ds8OJWPh9meq /IFBAS8PRd0VnSb8wblnq8XnomGIqiUgDz0ckBfHo4rtsqwWoNZSLgwmGyAJ1Z0W AVooAPcw6zBGPk4H2SJwRI/RVUVijWuzEX0tigjPUquoo97e2aShHLCVRdo/x9FG G6H1RKu6k1sDXJzZNs0H3hmIh4xd2iusKatE6ctlmA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqaRC6ckb88hxATdXEOVO E1avCUoDytx0WDgzRAJ+TdK+khHPcQXO6h9NDJtdiiccsBjdFRm9s9U1EOV7Xbrf 8qCzqTT0M1OPCQ3za86r4LFK/6ylPVSuRu+4hFSyUO4zQMWG11nBgFeD1aWhnzBb sQ0x1nLvMDcyU3ZZCIialWfjATt8SIvKr4A4f7DHiszmqueBvsi4pTXrEVXgiqqW WDtrZ4IxShBmeukRG7jFlT8GCsZXUwsgC4mvJqZqmZS20x0ignAg81fnt5hafFsB fnpZ3/BSM3IqERtsB1ZQJy4XRfKNI9wg5a2niQpiQFrbsmccpbquTcHcsjhRcISS SUxaBbILjoJ/6f9WG2D7F5maNxoDaSQNDU7zJxI/n6YIE7iZKnzcyXmwZYVDZ15a 2lBQbbyfJBB5zsNV8qGnIihkfZlDPHwxsY62w/z+VCuFi0pqEEuYFw7awENUFomB 6GKiIVKifHCcYwV0ArbSIJ7UvTd00OuFONGDOlXvM48bU8sMtC764LPGf1r+fZVA EPpR4BM+W9JpvPeHQHH/F2JeelddrAK+KSEu3ERO/fKsKjErOtzighzzuU2exHEZ CHP7xOFvT+yWtIjIhRGa9k5ZPEflNxa45+tZ0/UR3iqfUWdwSpWVlwkKiMjH2TaQ AYlEtT2ofqF64zspd8VKWi0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 299866659749570191700606941177637004663314 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-18 17:18:28 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-16 17:18:27 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pastrypress.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 692077534853386776642941680044276221752484251163652615243076811196559158567433260411014501496021651596257637548884205381181996991073310674759772704145125864426151840830540758903496595400034634895252713696754165430167733658397533217722231755048989841907310272567618379931861313005719458144870680259072179090962428299571159359149587854290755799427111643035577619508807590912604198682099003327360719786317472277035460961880499837201234013073095532037017002128118656517857303034208658859789738226595401223277599946514923100245692666058046153242570142661219937705889821763731191284857995687328213788376321351029446974670664832278642973235908233770986343985102777432360824959250754171438050841767127263899230892362242946322571008337770887923279718138478810794513184120219972097540876951517286140968587839775556990170837075784897577040380139532964156616683270499414052835016735879872091702194545307860347952180586433466349382017796678232053855739458511917547781793895981661597542154824133147287728838639641259874858196925679586821742186957304612992758337936574083120966262886895566731276112912867086843225726451438570251124377455511389091768566288511469945052056035707866263561589895888894249596202293866016425177608151859287411582518843949 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f6eb3e7e85baa3bfb6b29d364ea4ecb677c3ea38 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pastrypress.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018be3a7d42a00000403004730450220746678cf6b29b89c53d9f361c85f46399509ed18dab33247dafdf697a0cb4057022100d1358b4c2d369160d3cbd54ec077f1f76a0404cd7761bceb162c45ae966232e9007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018be3a7d43f0000040300473045022100a8cf1123069c569fb2870b20817c35bd178910a52f23a4cfbd71b157c5fa4250022027dcf110df5d17907e92bd08230f5f6c325815a119c0a0bafef484b909deff34 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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