lgbtqmeta.com
Issued by R3
About this certificate
This digital certificate with serial number 03:59:b8:d8:2b:c1:3f:57:50:e1:5f:d1:e0:bf:29:ad:23:6b was issued on by Let's Encrypt.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=lgbtqmeta.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:59:b8:d8:2b:c1:3f:57:50:e1:5f:d1:e0:bf:29:ad:23:6bSerial Number (int): 291867688826044382667880738845649344996203
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 23:1d:f1:22:f6:11:7e:5e:cd:f2:02:94:4b:9a:e1:88:0d:29:c7:33
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 1c:4a:e5:16:3f:1b:94:57:2c:10:1f:bf:be:20:13:5d:44:be:be:a0
Fingerprint (sha256): 01:ae:89:45:d2:38:20:07:7d:ad:fb:84:73:12:07:96:90:98:81:48:fa:e1:02:8d:b1:e6:fa:b7:94:b9:ee:66
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate lgbtqmeta.com
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lgbtqmeta.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cocoamulch.com
fightwitheric.com
glutenada.net
lgbtqmeta.com
markcmillerlpc.com
ostomyequipment.com
publicarchaeology.com
timothydixonministry.com
fightwitheric.com
glutenada.net
lgbtqmeta.com
markcmillerlpc.com
ostomyequipment.com
publicarchaeology.com
timothydixonministry.com
Other certificates including the domain name lgbtqmeta.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for lgbtqmeta.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgISA1m42CvBP1dQ4V/R4L8prSNrMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMDExMDIxNDJaFw0yNDA1MzAxMDIxNDFaMBgxFjAUBgNVBAMT DWxnYnRxbWV0YS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4 jpAwRB1CbsrrOXPPZdwdiugxfk2hEn7QO5MLUNDHoGbvuhh1knYuCq18VRctet9+ b1QvNwOEDgPms96NnA2pwCruDPZvcuk8YIBU6jRSPqXWI91avMeVWiEdt1jCcif4 XHo7uqMCKUfY7CeHrgZ6ap+r0CN0ItuPT0ztdutBRUmWoLaylK/J44wPWfyp+TBS 9eCSx1Ozgi/3T2GVb6IiYpxUD6xoi4ZfP+q/WCO0EDu3WJlP2iOjZauipMdrkUqD /iTWvo4gRoz5UR21pXA+ezt1nLTfmuGmbFmrN7NFWbOybOl52dymwrt6qFZWRrhN XjnfgiYufPOQNeZdo9pZAgMBAAGjggKdMIICmTAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFCMd8SL2EX5ezfIClEua4YgNKcczMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MIGmBgNVHREEgZ4wgZuCDmNvY29hbXVsY2guY29tghFmaWdodHdpdGhlcmljLmNv bYINZ2x1dGVuYWRhLm5ldIINbGdidHFtZXRhLmNvbYISbWFya2NtaWxsZXJscGMu Y29tghNvc3RvbXllcXVpcG1lbnQuY29tghVwdWJsaWNhcmNoYWVvbG9neS5jb22C GHRpbW90aHlkaXhvbm1pbmlzdHJ5LmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCC AQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9 AA0tcm/h+tQXAAABjfm/o6cAAAQDAEYwRAIgTamlsVzKxfKFUZU+E7+PrFro+vWc FoK00q6pUx+uBCcCID23Ecjrt8WpsqBcYb3azdzA/3X6ivWe86hbVzuP8wHjAHYA ouK/1h7eLy8HoNZObTen3GVDsMa1LqLat4r4mm31F9gAAAGN+b+jjQAABAMARzBF AiEAy2YDdYfZlKqNn6OEeeCFBU2/sFpMTDlhHwb3PbMDeVcCIEzUuTTs+zniGBSG 4amJcHgq0boVKc11C05neyeMRo7WMA0GCSqGSIb3DQEBCwUAA4IBAQAM7JTAsB3J 6EJbA3Aro6EuYtAxpm31ijFrowBgK9nnthPlCHMm6wL+hHiYKZf1qbGjjgOH0Gws WoYO+b1EZVTTFn1Typ9Hwc2dTOzHvjh0pvU3jD+Ak0OSsYYvZ8CAKYcZUMPtS7HA 0GcRG6Koa+JrrZ4128p60ufVb0CB07dZ4V2cbnAggS4QgGi0F9EwRf9NAo+qds8R gdl4RFV57lAMhBTVWGRL82RH3VMr+gcVOsFAREUnf7GQj07VrDMhSLbPK0CUoS6u 01f5EwPK/7Ae7QQu0Mcvy9nSkRRukh41arOePHUWjZfIxiH1e/aM9qi6M04iFVoV ZIV0m/c3TfDn -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+I6QMEQdQm7K6zlzz2Xc HYroMX5NoRJ+0DuTC1DQx6Bm77oYdZJ2LgqtfFUXLXrffm9ULzcDhA4D5rPejZwN qcAq7gz2b3LpPGCAVOo0Uj6l1iPdWrzHlVohHbdYwnIn+Fx6O7qjAilH2Ownh64G emqfq9AjdCLbj09M7XbrQUVJlqC2spSvyeOMD1n8qfkwUvXgksdTs4Iv909hlW+i ImKcVA+saIuGXz/qv1gjtBA7t1iZT9ojo2WroqTHa5FKg/4k1r6OIEaM+VEdtaVw Pns7dZy035rhpmxZqzezRVmzsmzpedncpsK7eqhWVka4TV4534ImLnzzkDXmXaPa WQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 291867688826044382667880738845649344996203 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-01 10:21:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-30 10:21:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lgbtqmeta.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31377400183629172018071291922119334654028242244736742292168094697888165232095318671168895197531942913419231240345504001745010728529879491093392827986356673359732482069401807303912876361011079970499482955367962197194615425099679899892293797340864063194699556982281235163507486769987401777832489971309288920329883729521594740481521431901163809708462825316100910592337188884190043964982907720508971915369720419831059419138447226979838047753097667325926915693307685702953625727547414607749426428207042950820363273306854965913744412908588407529990818182310370852427242653875069493098602872307245390520002266868698300275289 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 231df122f6117e5ecdf202944b9ae1880d29c733 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (158 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cocoamulch.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fightwitheric.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'glutenada.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lgbtqmeta.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'markcmillerlpc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ostomyequipment.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'publicarchaeology.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'timothydixonministry.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018df9bfa3a7000004030046304402204da9a5b15ccac5f28551953e13bf8fac5ae8faf59c1682b4d2aea9531fae042702203db711c8ebb7c5a9b2a05c61bddacddcc0ff75fa8af59ef3a85b573b8ff301e3007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018df9bfa38d0000040300473045022100cb66037587d994aa8d9fa38479e085054dbfb05a4c4c39611f06f73db303795702204cd4b934ecfb39e2181486e1a98970782ad1ba1529cd750b4e677b278c468ed6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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