storycraft.bible
Issued by R3
About this certificate
This digital certificate with serial number 04:8b:92:76:f8:92:d3:a3:c8:38:15:5c:1e:fc:bd:81:94:8a was issued on by Let's Encrypt.
With 16 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=storycraft.bible
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:8b:92:76:f8:92:d3:a3:c8:38:15:5c:1e:fc:bd:81:94:8aSerial Number (int): 395943077749135730605194403675446641267850
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b1:10:c6:e6:fb:13:0c:13:2b:bf:98:44:f3:05:b7:9b:41:71:2b:a8
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 68:63:85:4f:ce:91:b5:34:02:cd:6c:15:a5:3f:bd:2d:17:ea:de:4b
Fingerprint (sha256): 06:db:21:2e:b3:15:a7:a3:b3:f2:db:e3:ba:9d:ef:b2:90:ca:4f:ac:c4:3b:dd:aa:39:a2:60:7e:a8:a5:6c:ef
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate storycraft.bible
16
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for storycraft.bible
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
baileycounty.com
canibuild.co.in
corporatereengineering.com
houstonroboticsclub.org
howellcounty.com
huntingtonchristmaslighting.com
intlpower.com
mybasementmakesmeth.com
regenerativedomain.com
ringgoldcounty.com
southcarolinapatriots.com
spraycanartists.pro
staycationstandrews.com
storycraft.bible
treasurecounty.com
whidbeyisland.cam
canibuild.co.in
corporatereengineering.com
houstonroboticsclub.org
howellcounty.com
huntingtonchristmaslighting.com
intlpower.com
mybasementmakesmeth.com
regenerativedomain.com
ringgoldcounty.com
southcarolinapatriots.com
spraycanartists.pro
staycationstandrews.com
storycraft.bible
treasurecounty.com
whidbeyisland.cam
Other certificates including the domain name storycraft.bible
(limited to 100 certificates)
Certificate
The complete raw certificate details for storycraft.bible in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgISBIuSdviS06PIOBVcHvy9gZSKMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MDcxNzEzNThaFw0yNDA4MDUxNzEzNTdaMBsxGTAXBgNVBAMT EHN0b3J5Y3JhZnQuYmlibGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDpTziIjYG57lWTRMap9i5RKxGhXWBSFU+23NlJxAX9I5knql8A60rTfDP7PsyV u3wKncrvN1KLUlXCbfM+LvMbFj8QPBThGIBeliiO/Bu37qj0Euija3WCiaU4zSzO sUi7kVAiff9erzncp0t4iw/kLauGkWSyhLoQIijMIumxHmfStusp4u6Zlhs3uIXS nPsuAG1eC2PtVGIB4nl9NRyQpDzgi4MdGineRKFzWhTUgzhzePPqV6L0CbK8IQJq l8WQzKWttdqer8w74AARXg+0oyvOxp7IVtgeaSYqQauWK/HzpxZjdFq/xCEciFvQ w6QfTOx24d5+WHb1igvrDKZVAgMBAAGjggNoMIIDZDAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFLEQxub7EwwTK7+YRPMFt5tBcSuoMB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMIIBbgYDVR0RBIIBZTCCAWGCEGJhaWxleWNvdW50eS5jb22CD2NhbmlidWls ZC5jby5pboIaY29ycG9yYXRlcmVlbmdpbmVlcmluZy5jb22CF2hvdXN0b25yb2Jv dGljc2NsdWIub3JnghBob3dlbGxjb3VudHkuY29tgh9odW50aW5ndG9uY2hyaXN0 bWFzbGlnaHRpbmcuY29tgg1pbnRscG93ZXIuY29tghdteWJhc2VtZW50bWFrZXNt ZXRoLmNvbYIWcmVnZW5lcmF0aXZlZG9tYWluLmNvbYIScmluZ2dvbGRjb3VudHku Y29tghlzb3V0aGNhcm9saW5hcGF0cmlvdHMuY29tghNzcHJheWNhbmFydGlzdHMu cHJvghdzdGF5Y2F0aW9uc3RhbmRyZXdzLmNvbYIQc3RvcnljcmFmdC5iaWJsZYIS dHJlYXN1cmVjb3VudHkuY29tghF3aGlkYmV5aXNsYW5kLmNhbTATBgNVHSAEDDAK MAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2AEiw42vapkc0D+Vq AvqdMOscUgHLVt0sgdm7v6s52IRzAAABj1RDKRkAAAQDAEcwRQIhAN9vTAYzJQGF iJQC+cqJHzlncyVtVZ6dL2DMbyrYroQpAiB/wgyQUPFbN/etx05HSJfxnflwfGGw xttr4JlH1bV2nQB3AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAAB j1RDKR4AAAQDAEgwRgIhANQF4jUJRMMuJQPA3icTP+Lx2L9kVGCdvn76pvdyypbh AiEA9SlHhI75dQqubQMjeze3NF4ui4FS7ff6a1c5ZftNS60wDQYJKoZIhvcNAQEL BQADggEBAI8jtfBhDi8Kl0EF7TjNCavtq+uSK+xAfLnZIgSQCq+vV61X2qqQRFty 6IYhPdQiKZL9fBsUJaKh2P/NnZt4xImbDgo7tzFJGg6gQtKpLa44AzMtv6+kht1M H0lVoPt2EgZp+8m2sweTd6QzvlflVn2lSDj7rLTSiHwCAkNPzHVnCRPqKVP8pGwd 7lifjUd/B209nMObtTdMgcZRaRjNo9jj7HFvRxXKKUyqmgl+Cy2o9Ie//K5pSXX0 cSEQ0d2hYA1Y2IHJU0C6saDiEh/+ZWvuDDIyULLFFBcUYtM1koAcKVpd90YsDYJq GW18pbIDmv+DvoctYGlAfUR9xQ29swE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6U84iI2Bue5Vk0TGqfYu USsRoV1gUhVPttzZScQF/SOZJ6pfAOtK03wz+z7Mlbt8Cp3K7zdSi1JVwm3zPi7z GxY/EDwU4RiAXpYojvwbt+6o9BLoo2t1gomlOM0szrFIu5FQIn3/Xq853KdLeIsP 5C2rhpFksoS6ECIozCLpsR5n0rbrKeLumZYbN7iF0pz7LgBtXgtj7VRiAeJ5fTUc kKQ84IuDHRop3kShc1oU1IM4c3jz6lei9AmyvCECapfFkMylrbXanq/MO+AAEV4P tKMrzsaeyFbYHmkmKkGrlivx86cWY3Rav8QhHIhb0MOkH0zsduHeflh29YoL6wym VQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 395943077749135730605194403675446641267850 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-07 17:13:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-05 17:13:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'storycraft.bible' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29452590306136270351317608810390027412333788614078543438392681787420789651070348754036709217896676277703286632132479214581898008890126739123392926827055615965885175195326683724853404015171605245197620746995981760271929002366295142950093801907393143748923676330153806468845929582892738846553239199434963081741580014962912707019421515804531645795022482761021086143868010714057789012523752494635497493109991721048898169604684645042620610646523549905182594650624181033881005191457591128530545309984791238224635583837965540599495015597470962741178585931784421329161045281292923116452986507485808284720500654226541449619029 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b110c6e6fb130c132bbf9844f305b79b41712ba8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (357 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'baileycounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canibuild.co.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'corporatereengineering.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'houstonroboticsclub.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'howellcounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'huntingtonchristmaslighting.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'intlpower.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mybasementmakesmeth.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'regenerativedomain.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ringgoldcounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'southcarolinapatriots.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'spraycanartists.pro' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staycationstandrews.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'storycraft.bible' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'treasurecounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'whidbeyisland.cam' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f544329190000040300473045022100df6f4c0633250185889402f9ca891f396773256d559e9d2f60cc6f2ad8ae842902207fc20c9050f15b37f7adc74e474897f19df9707c61b0c6db6be09947d5b5769d007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018f5443291e0000040300483046022100d405e2350944c32e2503c0de27133fe2f1d8bf6454609dbe7efaa6f772ca96e1022100f52947848ef9750aae6d03237b37b7345e2e8b8152edf7fa6b573965fb4d4bad . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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