romance-superstore.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:ff:fb:4b:b5:a1:b2:0d:c9:2c:e3:48:b0:6a:2a:21:e5:55 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=romance-superstore.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:ff:fb:4b:b5:a1:b2:0d:c9:2c:e3:48:b0:6a:2a:21:e5:55
Serial Number (int): 348442890693253429542759675591536140215637
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 06:ad:69:0e:c1:df:b2:97:9d:d9:19:db:0b:d4:27:b6:c6:09:27:22
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 17:b8:c7:76:40:47:12:8c:33:02:29:8f:74:de:ee:05:45:25:b1:8b
Fingerprint (sha256): fc:e1:1f:ac:bc:27:c4:2d:4c:10:5d:9f:20:5a:79:8b:60:d2:88:f1:fd:31:2e:dd:9b:50:61:70:e5:27:37:e6

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate romance-superstore.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for romance-superstore.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

romance-superstore.com

Other certificates including the domain name romance-superstore.com

(limited to 100 certificates)
almeta.boston
www.romance-superstore.com
romance-superstore.com
www.romance-superstore.com
www.romance-superstore.com
romance-superstore.com
gsmonitor.com
romance-superstore.com
www.romance-superstore.com
romance-superstore.com
romance-superstore.com

Certificate

The complete raw certificate details for romance-superstore.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGYzCCBUugAwIBAgISA//7S7Whsg3JLONIsGoqIeVVMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MzEwNDM1MzZaFw0x
OTA4MjkwNDM1MzZaMCExHzAdBgNVBAMTFnJvbWFuY2Utc3VwZXJzdG9yZS5jb20w
ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCxBqCpcGBZyJtN3jUiKaU0
Fcp/ftq+PBsAzGljDuk4MeNVmRIG82DicTqR3WpXu/dGIpNrON7lcE3jwwOHwqyp
BZ2eOG4+UW1pK05W0KJ/j8GGda3pz1ZvaV8EhySZWmgRxW0plgJGWadSQslMVkqU
kUc4tQKqRqO78Gq6upLr7lmRPINwH7lx8ICfddR7/O3wzt58GRrPkj4xxD7o+skJ
gWVmQyyxm219Bti9+N6v22O/u8HDAx3XNDT+jFdQY9eXSQ2370bwp8BfbMW/wMcG
++9P76PK5FIKcoTkfuYChbR25NZZOCk3DGK7PNhBQvw4TkgzCY39etAcFMPBpCQx
WUJPRKTgj5yWj1NobtLgwzsFMPFD5YaJnG8VnCJQbkOtVpcTik5Z8UOBmoaLo91T
64qN0/8/ZQecsXAYPPnDp3uo+XV8iGUIwR//NDpNSEeCO4B3uZWXpooT8ljztG7A
FLXWUFg13gCP6NmBZlpZNVO562yQDQA6BfAyS7O1atavGxaQcLAMM7MX2ZzrLqKp
frEdFCOwBsEMBWmAY6sOB6FFHKH2vg51okaQNuGSZDH9XIJHI6o67p06J/AmW/91
DHeXd4OghXKkSnyPcwZRV1LP/HxVoSl3/GNUXVm01HRZE5hq5XpvfXVmIJqL3q/U
P/GoMzT2eo8pQGBzq4fF+QIDAQABo4ICajCCAmYwDgYDVR0PAQH/BAQDAgWgMB0G
A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud
DgQWBBQGrWkOwd+yl53ZGdsL1Ce2xgknIjAfBgNVHSMEGDAWgBSoSmpjBH3duubR
ObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9v
Y3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9j
ZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMCEGA1UdEQQaMBiCFnJvbWFuY2Ut
c3VwZXJzdG9yZS5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMB
AQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggED
BgorBgEEAdZ5AgQCBIH0BIHxAO8AdQB0ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3
NXnmEHvMVgAAAWsMYuYNAAAEAwBGMEQCIAiatmxdSpoHwOylGgLwxe9gpOFL0zWv
vOh9FfY47ML7AiBBvf1x6EZt8stX2Gl8eCuvzyBpFFStYmguV+9smAaaLQB2AGPy
283oO8wszwtyhCdXazOkjWF3j711pjixx2hUS9iNAAABawxi6BkAAAQDAEcwRQIg
FnY843ypDqf2ygjcHn4Y9sfo2XMO28l3+ntahgR4uB0CIQD0KEAYs4raQZywipvo
S940GEj+m2OJfVBQlsxjQcd6bDANBgkqhkiG9w0BAQsFAAOCAQEAKNEXxq9s0Tje
DBPe909lGX+VPGo93LEXom6u13N3cPc/BPwZzKp2LKwwqB1T6b0jKTBertqbPiQG
xb1iJ56oCET8i92nOZGHNRkFAGYGpCXKq1XR6VRlKB7Z2j6nX2b0oFlxOgfjo9hW
7UdN6xxMJjmsMC+T/9ryDxktku6TpOCBsNyY6ItTogrowjHRKZW/Fn76Ytu4clnM
6HE0ktKfL6vK7ePtTHjqkdN6NZwGe08rKjGHwnJ6SXQzcWaQlW6k/MMr/bm7m1bb
uadppfLMMGfj9YvyGZn2EJoj7Elk2CClj6khqC7l0CstArVhSEPn4lZxbwUPvvVc
h1Ex0H65Bw==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 348442890693253429542759675591536140215637
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-31 04:35:36 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-29 04:35:36 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'romance-superstore.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 722202617967683944066183856275992120109239679297319771257179272991580101709966468094820901223048643549754815331622611949064070147479447580307967900579531806559191901139793458951217687162997193354108449325087842314088488883246101403885246070310433311738349732177489985078400985079665146248333021268756385156655472492502168696219412877065873603722561721468244957134502192108055419165167147348393038461011982554696656515516043721347529716371265718923214046344839794054753825112175621872179520357405826739612306882894787888622052977843074410708479776002935183146745778838173445627749809387510568590755984033494421210780145829945285275038102756697522353633630164217013858828130785070354569012875284795040483941167545835669186928785139093445935178247239059145726800776425882991643761417202206963872119969935971600127882747341369936250784492720708980003694571443248805147228159647587022154934770253113372200908237882418337596131361154304913557685352147586689338978141917413269914857974881523059471724508010101337525769301142689469501646710984953745381642361054548503464356586628040361102359643409658587850814675865063549652620469444428296851823103930659150485476149459188096148339474669552155184342758493863988272054856554708282986186917369
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							06ad690ec1dfb2979dd919db0bd427b6c6092722
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'romance-superstore.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016b0c62e60d00000403004630440220089ab66c5d4a9a07c0eca51a02f0c5ef60a4e14bd335afbce87d15f638ecc2fb022041bdfd71e8466df2cb57d8697c782bafcf20691454ad62682e57ef6c98069a2d00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016b0c62e8190000040300473045022016763ce37ca90ea7f6ca08dc1e7e18f6c7e8d9730edbc977fa7b5a860478b81d022100f4284018b38ada419cb08a9be84bde341848fe9b63897d505096cc6341c77a6c
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0028d117c6af6cd138de0c13def74f65197f953c6a3ddcb117a26eaed7737770f73f04fc19ccaa762cac30a81d53e9bd2329305eaeda9b3e2406c5bd62279ea80844fc8bdda7399187351905006606a425caab55d1e95465281ed9da3ea75f66f4a059713a07e3a3d856ed474deb1c4c2639ac302f93ffdaf20f192d92ee93a4e081b0dc98e88b53a20ae8c231d12995bf167efa62dbb87259cce8713492d29f2fabcaede3ed4c78ea91d37a359c067b4f2b2a3187c2727a497433716690956ea4fcc32bfdb9bb9b56dbb9a769a5f2cc3067e3f58bf21999f6109a23ec4964d820a58fa921a82ee5d02b2d02b5614843e7e256716f050fbef55c875131d07eb907