DV SSL/TLS Certificate for forestpresbyterianchurch.org

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the forestpresbyterianchurch.org DV SSL/TLS Certificate

This certificate with serial number 05:24:5d:9d:d1:d2:15:f6:51:7f:a9:44:98:dc:9b:51:16:2f for forestpresbyterianchurch.org was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for forestpresbyterianchurch.org provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:24:5d:9d:d1:d2:15:f6:51:7f:a9:44:98:dc:9b:51:16:2f
Serial Number (int): 447936032517838123318937838321143139866159
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 9c:3d:89:31:ac:c2:8c:c7:8c:d6:7d:50:aa:ba:ce:d4:d4:7d:b4:43
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): 48:9c:1a:30:c8:89:d2:7c:27:5f:3a:65:b5:10:c2:c5:61:d8:d0:c1
Fingerprint (SHA-256): 5b:6a:bf:8b:0d:5b:d0:75:2c:f0:69:dd:4e:04:91:00:04:8e:30:d7:a6:40:b4:2e:84:1e:62:ef:e2:8d:28:1c

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/48.crl

Check the revocation status for certificate forestpresbyterianchurch.org
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for forestpresbyterianchurch.org

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

forestpresbyterianchurch.org

X.509 Certificate

The complete raw X.509 certificate details for forestpresbyterianchurch.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5AN0ednLS14T/um23d9H
NHfdh7c5R8fnCcfcwZxK0M8mkc74PoTZV5PkpqbuqfzetcFfU2q+N4lFyK1apQO7
Aq6GjmCPB1jIfdHdcg4vZT36xhnfZZByBfGXTyykE7i2R+QJD2L/UhFbmKX/fulF
UoGlAt+WBft7OZtLJeatWJIXjKT6FVXzQi71ex+cnxPPc2eFEjY4C7X8WiRLggjj
ugJxUfQ9CH55veu1CLNREUmEq1N748dZKfAI23dTkRHKzKiaVMlcN8BjBJFETlyS
3b0EQMmf91ULehiX4xaHWCdLfxMEceQ62iK3aS3DQO+s8137x2TbPJtnuJqdzyFX
LQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 447936032517838123318937838321143139866159
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-21 09:44:53 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-19 09:44:52 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'forestpresbyterianchurch.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28784037248515613457739829579551127112408696736879765097932348506534946431024287162000245425927810970542660004758047709570554014445938921094206062290497344410401650474071659354155308312553173292348211783560796444313107324775083230159907048226647588346967592979181514385877807279258092322090978100987444597919683736129299203465548760823770333866408411940061045681982539857329672488137615831199244292392117785732853182932018979832108985549922625718317159912535791697870052837546424874363972411990945677567761883525501908910062838488941437850820531057109450943651605468313825932089695806844874902696883313146485790562093
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							9c3d8931acc28cc78cd67d50aabaced4d47db443
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'forestpresbyterianchurch.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/48.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee00750012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a00000196f270d54d000004030046304402205c03f5ccaa3292f2950188ffda4b89137ab3988f028ae19508c6c8d5c671c2e502202c1711c1027ba39f355b8f1186c46f1d8156c124269e52b0603fd5420ec51c8a007500ed3c4bd6e806c2a4a20057dbcb24e23801df512fedc486c5700f20ddb73e3fe000000196f270dd140000040300463044022100bd69d2dd8139e479820376f10e4b93f4120842362610dfe789998badc95782ff021f4f60a14a59d6622fc24426f99f5b73413ff09a8684550db974c91f59bf96a6
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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