goldbooks.co.il

Issued by R3

About this certificate

This digital certificate with serial number 04:53:4c:fb:4c:cb:9d:0f:23:9d:48:7e:04:44:f6:7c:d4:cb was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=goldbooks.co.il

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:53:4c:fb:4c:cb:9d:0f:23:9d:48:7e:04:44:f6:7c:d4:cb
Serial Number (int): 376794906333265079218567188402157299487947
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: ef:b8:0f:b3:85:5e:bf:33:f8:28:2c:9b:af:d7:af:0b:3e:0d:7e:14
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 5a:b5:85:a4:f5:54:21:c8:92:e7:11:da:db:f9:c1:77:9c:59:e7:f0
Fingerprint (sha256): f3:70:aa:89:f0:33:0c:ab:7a:ef:c3:47:b8:c5:a8:b7:0c:91:49:25:27:73:62:06:4c:5b:9b:bf:73:27:22:48

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate goldbooks.co.il

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for goldbooks.co.il

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

goldbooks.co.il
www.goldbooks.co.il

Other certificates including the domain name goldbooks.co.il

(limited to 100 certificates)
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
test.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
chanut.goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
chanut.goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
demo.goldbooks.co.il
chanut.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
demo.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il
goldbooks.co.il
goldbooks.co.il
m.goldbooks.co.il

Certificate

The complete raw certificate details for goldbooks.co.il in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 376794906333265079218567188402157299487947
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-01 00:26:11 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-30 00:26:10 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'goldbooks.co.il'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 798575388750523704224632633291902269095525929327330379204877484410893082556991168273448975179113144440011713717996432497528342340458462875098543756879611464127486959910903185378984449962895269739162436395064921402994922525273777955635358265515854833972519758538560483457257184073918586640128977126998847312105233935441296140503365578574183538265748458602025302727084489906653186074740136555264991808593089329377229126868654612997116805981830160448271325074396857214973350221836699040685551814826575019769124846820936776725341993981507957214088829564878354059482160630094349531890454431259430332601124985528717365862374500373560748675558857479226552714417432646357262912263286650412631572436359096137949037647930249073235117445100534557419075407882930687488480614260178394829041757926653687807151534191300013428333254445983805318564723556927823898381049929549920040776734625127024206559828120642115301595807011061310434603859855254457697568392445169855667384048480972319127362221644518006966095221869947388701776233411097785098619856734259797045289205263613817405066751258698556847994868191376802084170132750545248226230074025571720443716884216100246773729660017765393469052480910416720048401664914637386207672713782750320884776210339
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							efb80fb3855ebf33f8282c9bafd7af0b3e0d7e14
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'goldbooks.co.il'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.goldbooks.co.il'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018a4e5904cb0000040300463044022055fc096540b35ea462d0dfaae12fa01f768adf5ad7e994a792c0b154894b4a5102201de293da30b99c92c7178220f1e2ddb7917460ac2288d422af18662470fc907e007500e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018a4e5904c00000040300463044022022dabd9780dcc5c52677cd6830ba4606fbc5c4210a857f2d1d9fac9054d4ed8402202d8418a54172faf028a1658c76a147dfe128960a1fa381490fd4a7aa3e65f730
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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