muraba.org
Issued by R3
About this certificate
This digital certificate with serial number 04:01:33:a9:79:d6:03:1a:a2:05:d6:7e:29:73:28:1d:00:4e was issued on by Let's Encrypt.
With 13 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=muraba.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:01:33:a9:79:d6:03:1a:a2:05:d6:7e:29:73:28:1d:00:4eSerial Number (int): 348858096691043397617482811771513705660494
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 48:b4:6b:ea:70:ae:09:50:ab:b8:33:fe:63:3c:d5:1d:06:0b:95:1b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d9:ad:21:0b:bb:d5:50:3a:af:3d:0b:7a:88:ac:38:a4:4a:0b:2e:70
Fingerprint (sha256): 02:dd:dc:cf:84:82:a0:2b:44:e8:8e:1b:5c:44:db:32:8a:8b:5f:21:b9:f1:02:fe:3a:97:a3:55:80:b6:72:3b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate muraba.org
13
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for muraba.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
conetoe.com
grassfedtraditions.com
handcraftedloghomes.com
homeschoolpla.com
legalreferrals.com
live.noncompliantamerica.com
marshvillerealtor.com
metametadata.com
muraba.org
mycotv.com
nameandform.com
pressurewasherswintergarden.com
www.treasuredpastgen.com
grassfedtraditions.com
handcraftedloghomes.com
homeschoolpla.com
legalreferrals.com
live.noncompliantamerica.com
marshvillerealtor.com
metametadata.com
muraba.org
mycotv.com
nameandform.com
pressurewasherswintergarden.com
www.treasuredpastgen.com
Other certificates including the domain name muraba.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for muraba.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6zCCBNOgAwIBAgISBAEzqXnWAxqiBdZ+KXMoHQBOMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMjgyMTMzMDNaFw0yNDA1MjgyMTMzMDJaMBUxEzARBgNVBAMT Cm11cmFiYS5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpdfPD P4v4NMcT91tapXZ5hsfP3YmHKlBg7uxE6oefbcY8PHr0YZEdixHBHvt++HtkKY2I qhKflwAbdJRY6JhdGQ+K/vhj6hlvsZ93vvtuoZ7dY9PmzHEpFsVcSYygAAopNWIX lZBbt0DU+U97Vd70q4Tc51UeRmIYXMkFof1432h8GRY8JKC8qtzuFXc6btsDnAgH x0H5sPWGhU33XJIs29D7d343qKdl91GDsEB1dS4FODRQLVbYsUmqZnEdq9g2GOZ8 fkjVktuxqS2yGpRRX8w0DndUPCLmMinUZIU17Y0e4zH/RByXgDQGdYWcyn5HuzLB k+2mjTE4H4KxVA+9AgMBAAGjggMWMIIDEjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FEi0a+pwrglQq7gz/mM81R0GC5UbMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMIIB HQYDVR0RBIIBFDCCARCCC2NvbmV0b2UuY29tghZncmFzc2ZlZHRyYWRpdGlvbnMu Y29tghdoYW5kY3JhZnRlZGxvZ2hvbWVzLmNvbYIRaG9tZXNjaG9vbHBsYS5jb22C EmxlZ2FscmVmZXJyYWxzLmNvbYIcbGl2ZS5ub25jb21wbGlhbnRhbWVyaWNhLmNv bYIVbWFyc2h2aWxsZXJlYWx0b3IuY29tghBtZXRhbWV0YWRhdGEuY29tggptdXJh YmEub3JnggpteWNvdHYuY29tgg9uYW1lYW5kZm9ybS5jb22CH3ByZXNzdXJld2Fz aGVyc3dpbnRlcmdhcmRlbi5jb22CGHd3dy50cmVhc3VyZWRwYXN0Z2VuLmNvbTAT BgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2ADtT d3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjfHZkd0AAAQDAEcwRQIg ZL89N7iHKEYWNncjnFGJPeZhb8xO5uO/EBCVbsJS3P0CIQCfglAHFV81/LJZdBmZ 6fGlYcr+c7b/dR7q6BsyN5eVuQB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FI WUZxH7WbAAABjfHZklUAAAQDAEcwRQIgEWwbfpmj2HLlnvWhCZxxSP9XNV3g8YS7 SlTRexTmFU4CIQCKigd8KzoEvSXhwI4UDnxfmcCK5ZxLHf1u2SbCR94OqTANBgkq hkiG9w0BAQsFAAOCAQEATVxqNxDnm89Yy8WIvYamNSbxZTOKh2UpnILQ/ym8JQC5 4b4nwzuC6OhXj+ysN4+WhwOl0c9XzqBMfz6iX4MoZRIE+Bh9Uc3q6ASnKpNsaPuI Ak9X9JKLeVF0hDnR2c9qbFL3wKN9sNMs/lQ+grrMJ1ZG9/LJ/C1S7Iibo8R2quUW ashmU4Xyxk5ifdkZKBU21R7vlUOGqOq+VTMnbJ+nCzwWugp2EK3Bv2zfXArkVLM/ W5MeouOX4p0OKzXg7abuYCK1yHBzLD4EQLat7CfPXLmPJ7lPe0dYJfr2XV7DRGwg a/QAG++ucBAuiWx2Mj2D/+KDvG7cxmGajiI6Ax6BUg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXXzwz+L+DTHE/dbWqV2 eYbHz92JhypQYO7sROqHn23GPDx69GGRHYsRwR77fvh7ZCmNiKoSn5cAG3SUWOiY XRkPiv74Y+oZb7Gfd777bqGe3WPT5sxxKRbFXEmMoAAKKTViF5WQW7dA1PlPe1Xe 9KuE3OdVHkZiGFzJBaH9eN9ofBkWPCSgvKrc7hV3Om7bA5wIB8dB+bD1hoVN91yS LNvQ+3d+N6inZfdRg7BAdXUuBTg0UC1W2LFJqmZxHavYNhjmfH5I1ZLbsaktshqU UV/MNA53VDwi5jIp1GSFNe2NHuMx/0Qcl4A0BnWFnMp+R7sywZPtpo0xOB+CsVQP vQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 348858096691043397617482811771513705660494 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-28 21:33:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-28 21:33:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'muraba.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21392437935915221516062252725043878381512969900549775733101087412536736830312347934857701535856761197934093988693329808763636097086123919073226527917478005842505212636500354683372374872097524614019254801287968149230267586965807520473794431302605300385132967138190807836861625829842915801574315934843239438756329185168722317869584222072902695268347222600088626800101581801124397203205967063556630223006030706294257507915432069939911260093818799906998872620101201705331295233815460407542415684847163482774663490050908996495876907414636363137496262735414773635626569437161617139005256343623321668885686118255390780297149 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 48b46bea70ae0950abb833fe633cd51d060b951b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (276 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'conetoe.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'grassfedtraditions.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'handcraftedloghomes.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeschoolpla.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'legalreferrals.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.noncompliantamerica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marshvillerealtor.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'metametadata.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'muraba.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mycotv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nameandform.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pressurewasherswintergarden.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.treasuredpastgen.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018df1d991dd0000040300473045022064bf3d37b8872846163677239c51893de6616fcc4ee6e3bf1010956ec252dcfd0221009f825007155f35fcb259741999e9f1a561cafe73b6ff751eeae81b32379795b9007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018df1d9925500000403004730450220116c1b7e99a3d872e59ef5a1099c7148ff57355de0f184bb4a54d17b14e6154e0221008a8a077c2b3a04bd25e1c08e140e7c5f99c08ae59c4b1dfd6ed926c247de0ea9 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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