winetasting.life
Issued by R3
About this certificate
This digital certificate with serial number 03:2a:fa:63:58:e3:70:ba:db:d5:b3:12:15:03:77:ef:e7:36 was issued on by Let's Encrypt.
With 18 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=winetasting.life
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:2a:fa:63:58:e3:70:ba:db:d5:b3:12:15:03:77:ef:e7:36Serial Number (int): 275961540045167105553022368848894638417718
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: aa:95:f1:ec:7c:b9:61:e2:9d:32:22:df:47:a1:1d:34:67:34:68:19
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 61:2b:0a:ca:f3:93:4a:57:80:51:27:5a:16:73:30:0d:74:34:63:b9
Fingerprint (sha256): e6:bc:20:be:cd:91:a1:bd:7e:1b:04:80:f5:c4:23:ae:7b:e7:16:2e:79:a1:8a:e5:c6:19:ae:43:e5:45:39:2c
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate winetasting.life
18
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for winetasting.life
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
apestadium.com
conservativevideoeditor.org
doorsexperience.com
oceanajones.com
odzbodz.com
pcgn.com
ravsy.com
rkh.co.in
rxfiberpro.com
sculpit.engineering
sharperpoint.com
sltd.com
sq.netooze.com
theconcise.bible
trademarkattorneys.net
turnkeydropshipstores.com
unyport.com
winetasting.life
conservativevideoeditor.org
doorsexperience.com
oceanajones.com
odzbodz.com
pcgn.com
ravsy.com
rkh.co.in
rxfiberpro.com
sculpit.engineering
sharperpoint.com
sltd.com
sq.netooze.com
theconcise.bible
trademarkattorneys.net
turnkeydropshipstores.com
unyport.com
winetasting.life
Other certificates including the domain name winetasting.life
(limited to 100 certificates)
Certificate
The complete raw certificate details for winetasting.life in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGFDCCBPygAwIBAgISAyr6Y1jjcLrb1bMSFQN37+c2MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MTEwNzQ5NTNaFw0yNDA4MDkwNzQ5NTJaMBsxGTAXBgNVBAMT EHdpbmV0YXN0aW5nLmxpZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCs/HJ49Fu1ee1uapblkSrWYgfDiDz7Wj4WMVxOt6EnO/VQjMEtgNrrLGVI6ZD4 Pe7faAeiTcctREQXhLbgFDR/mmcRGRDpxJCTxa0KV+TOMNfnReiUzCqEISzh+J0A dskZ8MoyReyJWbEjEnKsqGBbG+fei2M2xUwLuEyQN+q/84YkHS8819LA1tX7lslt iUokHdRqrcUg98z1f3OoB6Qls96G9rGlhOjb8R2S6zZ5hFdjvL5ltSzZW44A6/sS MTgwSu+Ic1sngn1moiudarL8mqm7PpeddrfblBkj7dd87+nQwPYcnFn9yPS5DIiG PMLXtb+S7Rym59+o14WTgF3fAgMBAAGjggM5MIIDNTAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFKqV8ex8uWHinTIi30ehHTRnNGgZMB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMIIBQgYDVR0RBIIBOTCCATWCDmFwZXN0YWRpdW0uY29tghtjb25zZXJ2YXRp dmV2aWRlb2VkaXRvci5vcmeCE2Rvb3JzZXhwZXJpZW5jZS5jb22CD29jZWFuYWpv bmVzLmNvbYILb2R6Ym9kei5jb22CCHBjZ24uY29tgglyYXZzeS5jb22CCXJraC5j by5pboIOcnhmaWJlcnByby5jb22CE3NjdWxwaXQuZW5naW5lZXJpbmeCEHNoYXJw ZXJwb2ludC5jb22CCHNsdGQuY29tgg5zcS5uZXRvb3plLmNvbYIQdGhlY29uY2lz ZS5iaWJsZYIWdHJhZGVtYXJrYXR0b3JuZXlzLm5ldIIZdHVybmtleWRyb3BzaGlw c3RvcmVzLmNvbYILdW55cG9ydC5jb22CEHdpbmV0YXN0aW5nLmxpZmUwEwYDVR0g BAwwCjAIBgZngQwBAgEwggECBgorBgEEAdZ5AgQCBIHzBIHwAO4AdQBIsONr2qZH NA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY9m2ChgAAAEAwBGMEQCIF/ztDrm 3wDSHpG9VGhptvTt3SnSJn32al7Kh1mSDzZ4AiApAeQ04pDe0gw4lIgoozN60IVM JnXnj5xGxJYvSzHwrwB1ABmYEHEJ8NZSLjCA0p4/ZLuDbijM+Q9Sju7fzko/FrTK AAABj2bYKGsAAAQDAEYwRAIgGU87M1qwg3ydJa2qUvsJYXgRdT444e6ZYDwFgpte ev0CIHVW1tA/mi2F51eTQynEMd4Dh0tKhfeIOKzEfMxtMod0MA0GCSqGSIb3DQEB CwUAA4IBAQBApjwnCEC4auc6AEDQXJT9XbY/nak+qw2JzZWlD4qb8qZBatm3XgWn d72jFwq4NbmAbyneQ8QuFk5C+iWIWeNR2197J3j1tKy9Gev5wUwQvhkD6HPpgAQu HlqEE6VnkKAZRJwVmAOaXEpZXiQdQoaW+pgFCS4OXwIHgP9yuCQf47n5862JFRmr aTp1yZcJ9/NIGEk4VrE3Gg2w8PjUyz/YCDrgJ5F7UnKnqQ2XgChV76XAEIv/UUiX i0ixiVM0S4+zAnjsY0pOa/zXdQ+RRXwScwkve9J2OYtFfOOLOId2kpwJqfFFnMLM OqAKVwstLst7RjTMqwIBW73yQiM3vU/d -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPxyePRbtXntbmqW5ZEq 1mIHw4g8+1o+FjFcTrehJzv1UIzBLYDa6yxlSOmQ+D3u32gHok3HLUREF4S24BQ0 f5pnERkQ6cSQk8WtClfkzjDX50XolMwqhCEs4fidAHbJGfDKMkXsiVmxIxJyrKhg Wxvn3otjNsVMC7hMkDfqv/OGJB0vPNfSwNbV+5bJbYlKJB3Uaq3FIPfM9X9zqAek JbPehvaxpYTo2/Edkus2eYRXY7y+ZbUs2VuOAOv7EjE4MErviHNbJ4J9ZqIrnWqy /Jqpuz6XnXa325QZI+3XfO/p0MD2HJxZ/cj0uQyIhjzC17W/ku0cpuffqNeFk4Bd 3wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 275961540045167105553022368848894638417718 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-11 07:49:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-09 07:49:52 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'winetasting.life' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21837474787500026535068001049833354645402289647361362365378760284619931301772238279660756693138917933732657266795412440653569948150145003668112265398890756523705546032130276560968258357009358776635970202855111093428677390683008358413585927228059254419338115031691351034842674847300912637144707018587851096019627257089030116539830390155424689491417372715243922138026145670237254056787031980446111313727951502645430316596666314385932023775588348058587866378526834465379474998205776683730244860567573110031192020198458044885593931064433838645239884663763633549735260918360368950200960336162543384766607123308568826109407 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) aa95f1ec7cb961e29d3222df47a11d3467346819 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (313 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apestadium.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'conservativevideoeditor.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'doorsexperience.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oceanajones.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'odzbodz.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pcgn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ravsy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rkh.co.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rxfiberpro.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sculpit.engineering' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sharperpoint.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sltd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sq.netooze.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'theconcise.bible' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'trademarkattorneys.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'turnkeydropshipstores.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'unyport.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'winetasting.life' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f66d82860000004030046304402205ff3b43ae6df00d21e91bd546869b6f4eddd29d2267df66a5eca8759920f367802202901e434e290ded20c38948828a3337ad0854c2675e78f9c46c4962f4b31f0af0075001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018f66d8286b00000403004630440220194f3b335ab0837c9d25adaa52fb09617811753e38e1ee99603c05829b5e7afd02207556d6d03f9a2d85e757934329c431de03874b4a85f78838acc47ccc6d328774 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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