DV SSL/TLS Certificate for discourse.gomomentum.org

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the discourse.gomomentum.org DV SSL/TLS Certificate

This certificate with serial number 06:e6:65:9b:6b:fd:63:80:e5:a7:6e:31:c2:d7:fe:34:20:44 for discourse.gomomentum.org was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for discourse.gomomentum.org provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:e6:65:9b:6b:fd:63:80:e5:a7:6e:31:c2:d7:fe:34:20:44
Serial Number (int): 601073719006258023427590571251691846639684
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 38:29:d8:c8:f2:d5:26:7f:0c:46:b5:b3:cf:a5:48:c4:13:f4:0c:f0
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): a8:12:10:6f:a5:66:14:f8:d0:6b:22:87:06:7b:ff:75:d5:f8:78:fc
Fingerprint (SHA-256): d0:e1:db:05:ff:2a:7a:70:17:16:c0:c9:4d:62:1e:d2:73:fb:d4:48:f2:0e:c8:a8:8a:56:81:e5:62:a3:e3:47

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/69.crl

Check the revocation status for certificate discourse.gomomentum.org
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for discourse.gomomentum.org

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

discourse.gomomentum.org

X.509 Certificate

The complete raw X.509 certificate details for discourse.gomomentum.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 601073719006258023427590571251691846639684
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-06 23:38:38 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-04 23:38:37 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'discourse.gomomentum.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 812136828439672508200295312989481883922442378083227982756855434335267732531082212808022454995210801769424537250492723089338853654135004860032212311288807308895574997152988027260347507825271654377866045439717594633538524494116701032241535184370946768328345591372993975280900503871067481557697841973124915297310834248179407085868722061335877142244191095901326283050491456521566808309510485477164075682880131995723090444225290558847159942238521412500885399390348810247009423977578829163625229664255347876524224790106746209220539241984866936991908502389212305910990911396455889496956126209071176853457810257462737100097552931472715403880295533178864979477020844116837261200967172362511907010156642223256332997481741983330219967014617512304552518504506565655129431347335592292183893322038668379776248910482586036864903656088224449856138690397643203119507159394306976056608770814268464561610806515929708543764861760343587741501127319458762448238430086331453924448181722087360041513263590349495980818812482780032097209108640647155745204524488553485916827759803362752528915026905764138378313826352626945736284615540955548945235270330052721769725090588854346827217397217115800785054390716174481515000741947336709370808035233811692394883599641
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3829d8c8f2d5267f0c46b5b3cfa548c413f40cf0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'discourse.gomomentum.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/69.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f2007700dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a0000019747d1e7b80000040300483046022100c575e8bc4a76eaf58428f47b24ee3a63d061970ab68d5d2a737bf4514e0fa280022100f27e30a91e30f837b49fb23ffc7da0db664894d11baf1a6d682a083b272f779b007700ed3c4bd6e806c2a4a20057dbcb24e23801df512fedc486c5700f20ddb73e3fe00000019747d1f71e0000040300483046022100f43f4e55b994f21314a8260ebce7f8b46420daa02c968b9f39bf8d5588a7d947022100e7b5a7e5c1d80ce2790c268fed1847e8b3d19e44fdbb9f3440bdffc023f0647c
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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