DV SSL/TLS Certificate for *.thecommonground.co.uk

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the *.thecommonground.co.uk DV SSL/TLS Certificate

This certificate with serial number 06:26:69:f9:0a:3e:9f:d4:27:31:5d:8d:24:4e:8d:7f:68:1a for *.thecommonground.co.uk was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for *.thecommonground.co.uk provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:26:69:f9:0a:3e:9f:d4:27:31:5d:8d:24:4e:8d:7f:68:1a
Serial Number (int): 535745307562818039536405405645768067344410
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 8f:55:3b:74:da:ce:6f:c1:43:11:d5:e1:a0:06:2c:ca:3c:51:5a:22
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): d5:aa:15:1b:65:1c:c3:99:e3:b7:b2:96:18:45:8f:5f:77:69:f0:2c
Fingerprint (SHA-256): bc:fd:0e:ec:44:ae:0f:03:7f:d6:0e:8e:e3:92:36:ab:5b:76:49:bc:d6:7c:62:51:e5:53:01:9e:43:0e:c8:fe

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/27.crl

Check the revocation status for certificate *.thecommonground.co.uk
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for *.thecommonground.co.uk

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for *.thecommonground.co.uk in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqgadqNYk/Xj1crBHv4bi
eMDnPDYD2OnqGE+l0oTq+yUUB+TRvGMis1HI/9YON18ec9T1vlR3kZJrS8ODHHqc
zl2HFjmmN4TxR7MRqku0kS7g27D3Ril2wqLos6q8yQOeBa3pF+WXabramwCaPk2v
VXJFBRmsKeqNMB2Mm8XalGFFyrp08BV08nMWBRGpgMIMDEn8qlW4NnoSZ9nH/ZKh
Lim5DHcQN8ocD4UQee4pHjSD9bXPsDPIGjWb1xusoi+vQKFSX+FbsHX3XA0jWpuQ
9v+O4VGC/3Cz0Y3DmedKw2Ovza7RIJMaM8MJoHSweuTPqjn/guKWdxSv3w/+Ye+F
sQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 535745307562818039536405405645768067344410
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-07-11 03:46:21 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-10-09 03:46:20 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.thecommonground.co.uk'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21463774245149912747542029630093134604587657904429251750533469461381260433027384793872964027192850917140399363833473387743719163563467154707033263946580093477395223536417420916666912735726562184017497579274032191064480385594539602381964362739641229912914189845774648073468468814565217392327230575955962061353826819600783595592964848798531294946380647748928611154330490243508710284673870599503680462022539184301673280474051421709619355885335186359729099776476921961533073898617433075174995534984339566533544400602274953117552683717351840318306504454926984349217579738488185812766863720190288277712232837303718885950897
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							8f553b74dace6fc14311d5e1a0062cca3c515a22
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.thecommonground.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thecommonground.co.uk'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/27.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0075000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa3400000197f7cced7a0000040300463044021f566e126a827f54e770eed47fe32ceaf497dac30ca5da946f9d7231717b74b40221008bf1ce30660f47592ac210d1a258d260c301173dbba906949191a6d100d8c1cb007600ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db000000197f7cceddf0000040300473045022014b7a3eedfee8bd0028cb2537fba520e535f1ea9037368d8beaa21ca12c283d9022100d06d203b5f8bb60690124668ecddc6ed3bab232bc3b3756f2af4f83a0b72a7e8
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		001cb27f7a796d65a176fa7735950772244a9642ea35ef5698f5d3017fb75074eb2e47f828aa6137794dda1a996061d5af0af629461f21dbef2d2e946a5f5360c30765b782c496778d144ccdb975261d0395b37ef6143201be7525e2ce16f614217b88ac578b27d87e7a2d66e87c0acd66254f7cef4db49c96aae51f9743427c9b533a3579718ebb86f939ed9e53b7acc12e21245993f04327fd1025368fa816cd7d848f863d057a18b59c06657b920afaef66653cfe93797baadf545ff0ec3b1d898c64dc399187b8f88fe8e4943078a15e2b21b24abe1d22b9a758654f3139026aa61dc514b4b6a4c9a4e21ecc360733a9547dce72d8ec0647b11b7b795a89b6