parterre.org
Issued by R3
About this certificate
This digital certificate with serial number 03:18:84:e2:e1:23:34:37:8d:67:95:b3:27:55:cf:28:66:c3 was issued on by Let's Encrypt.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=parterre.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:18:84:e2:e1:23:34:37:8d:67:95:b3:27:55:cf:28:66:c3Serial Number (int): 269680270722248207718080401195165750421187
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: dd:b7:2c:87:54:29:b4:1a:cd:b4:ff:2c:9a:e0:e1:e7:65:79:bb:fd
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 62:1c:2f:88:de:b5:f0:54:05:93:0c:20:0e:a4:2e:1f:ad:01:b5:db
Fingerprint (sha256): 07:a8:30:3b:0f:30:19:15:76:ac:a4:de:04:64:7e:9b:7c:f7:bc:f4:54:01:ab:e4:cb:62:4f:ff:2f:4d:c2:2c
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate parterre.org
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for parterre.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cohealthfreedompac.com
lcksmiths.com
namerson.com
ostomyhandbook.com
parterre.org
westvirginiablog.com
lcksmiths.com
namerson.com
ostomyhandbook.com
parterre.org
westvirginiablog.com
Other certificates including the domain name parterre.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for parterre.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgISAxiE4uEjNDeNZ5WzJ1XPKGbDMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTQxOTEyMzVaFw0yNDA3MTMxOTEyMzRaMBcxFTATBgNVBAMT DHBhcnRlcnJlLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALcM Xr0JA3t4gQxKcQBgSV7v9NroPqBAVg9tqQ+sEIPPVTUWBJrPh81e95wXeUKGVSkJ kio77IAqsNqyP1aN1iSgQX6INIXdWc22/EQRVRi5jvzVX50ypxEGLbGTxqXOe49T i18R5x8JRQlXTePklUZ8yKTrrRZAHajOUpVHCXmXhKOcaojh9PUwTZUh2MQALGkA sUiCN+BK1PJa9n9sG9FZlxDTrvoANBSyNASABHu0ROk7BwQhypRhXAXGiWX45e7A yYxsgM5A3GvgcOH50ZRPcgvN2DEWY4dSlZB/cj7C3+sV+ZMQ46Ffn+M24dGCx7Dq yZyPtrrKCCNS/xMWNPcCAwEAAaOCAm4wggJqMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQU3bcsh1QptBrNtP8smuDh52V5u/0wHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w dgYDVR0RBG8wbYIWY29oZWFsdGhmcmVlZG9tcGFjLmNvbYINbGNrc21pdGhzLmNv bYIMbmFtZXJzb24uY29tghJvc3RvbXloYW5kYm9vay5jb22CDHBhcnRlcnJlLm9y Z4IUd2VzdHZpcmdpbmlhYmxvZy5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwggEF BgorBgEEAdZ5AgQCBIH2BIHzAPEAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZ u7+rOdiEcwAAAY7ePX6pAAAEAwBIMEYCIQDQlxEglhcGyRviIvTvCl3srXa3NgNF krxdQHSEF2nDjwIhAN2wbQBxLFw35+7hbn/HsQ+vR2zXFR5HpPMAxnLDtobEAHYA dv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGO3j1/AwAABAMARzBF AiB1NHsjJN4ZCuwg7k+sxkWg12Bc5J39kkbgXqBZ0FquawIhAKFiwHiQpKBP2SL/ vPGV5rmLSxJrfdBuERolhmkaFKX7MA0GCSqGSIb3DQEBCwUAA4IBAQCGGy+kGtPz RbIk3M4H1Wj0GzSQRbu90VHv+5ZbYxbeBwhPy41LYwDB6nwZ2m0WEeDC8zEmewMb wRcAro51leDf3jh2N1g82Qwl2zYfBSqbh72zaVXqZ3wwU0MrcWWOQTa7c8xwwsLw ix6gQS2hv+vKI9IBLegPKk0FL0Q9wob+uodGaIUxzxoJPHQyje+ty4bXWGMP/ZPO TcOkajGhiyRPGnt648g8caYrLnXdM7cB5DbOWh//5MSw4VMLgxdRW7uYOC7R03ha iznVIl8UI+2+Ajw0K78L3KLKjKf8R4BeKmsjxZCcDGNwko62Hjy/hSFkbwW4a56L zkLOnP6aSI4g -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwxevQkDe3iBDEpxAGBJ Xu/02ug+oEBWD22pD6wQg89VNRYEms+HzV73nBd5QoZVKQmSKjvsgCqw2rI/Vo3W JKBBfog0hd1Zzbb8RBFVGLmO/NVfnTKnEQYtsZPGpc57j1OLXxHnHwlFCVdN4+SV RnzIpOutFkAdqM5SlUcJeZeEo5xqiOH09TBNlSHYxAAsaQCxSII34ErU8lr2f2wb 0VmXENOu+gA0FLI0BIAEe7RE6TsHBCHKlGFcBcaJZfjl7sDJjGyAzkDca+Bw4fnR lE9yC83YMRZjh1KVkH9yPsLf6xX5kxDjoV+f4zbh0YLHsOrJnI+2usoII1L/ExY0 9wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 269680270722248207718080401195165750421187 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-14 19:12:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-13 19:12:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'parterre.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23107709718613229295136613673539477340850391605480017214453096285282537268430493380072600503632612932150118982956295483799322648428729645186580060660760690908537988253815886507238690713726682449094009156692866544606634449708450390803532181494511816804329595917763259754138978520513732350184710351447682369393375613654880154516648379867579620205149865654120954131300746376082812564900918882191780435997084324901199083804031438765717059484343670064154983339062196085977674048644326728438598271937542976920134475245173345885464091312137446567130345607679383298063532566967320604827673927350510269949106775524066719053047 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ddb72c875429b41acdb4ff2c9ae0e1e76579bbfd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (111 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cohealthfreedompac.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lcksmiths.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'namerson.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ostomyhandbook.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'parterre.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'westvirginiablog.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ede3d7ea90000040300483046022100d0971120961706c91be222f4ef0a5decad76b736034592bc5d4074841769c38f022100ddb06d00712c5c37e7eee16e7fc7b10faf476cd7151e47a4f300c672c3b686c400760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ede3d7f030000040300473045022075347b2324de190aec20ee4facc645a0d7605ce49dfd9246e05ea059d05aae6b022100a162c07890a4a04fd922ffbcf195e6b98b4b126b7dd06e111a2586691a14a5fb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00861b2fa41ad3f345b224dcce07d568f41b349045bbbdd151effb965b6316de07084fcb8d4b6300c1ea7c19da6d1611e0c2f331267b031bc11700ae8e7595e0dfde387637583cd90c25db361f052a9b87bdb36955ea677c3053432b71658e4136bb73cc70c2c2f08b1ea0412da1bfebca23d2012de80f2a4d052f443dc286feba8746688531cf1a093c74328defadcb86d758630ffd93ce4dc3a46a31a18b244f1a7b7ae3c83c71a62b2e75dd33b701e436ce5a1fffe4c4b0e1530b8317515bbb98382ed1d3785a8b39d5225f1423edbe023c342bbf0bdca2ca8ca7fc47805e2a6b23c5909c0c6370928eb61e3cbf8521646f05b86b9e8bce42ce9cfe9a488e20