ozarklakes.com

Issued by R3

About this certificate

This digital certificate with serial number 04:ae:d2:f7:65:4b:1d:86:e8:b1:76:71:ba:ee:4b:3d:97:3a was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=ozarklakes.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:ae:d2:f7:65:4b:1d:86:e8:b1:76:71:ba:ee:4b:3d:97:3a
Serial Number (int): 407938698002197789982452644259106863814458
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: bd:80:79:97:1a:1f:a3:f1:f6:22:91:0d:88:6e:f8:22:66:45:5f:53
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 7e:f9:0f:02:b8:88:79:cc:fd:66:90:aa:31:b2:07:39:e6:04:d1:ae
Fingerprint (sha256): 0a:dc:6b:bf:86:1e:a3:40:30:a6:c0:41:59:73:8c:8a:86:07:69:31:5e:b5:0b:91:90:18:07:e2:4a:0a:df:ba

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate ozarklakes.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ozarklakes.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ozarklakes.com
www.ozarklakes.com

Other certificates including the domain name ozarklakes.com

(limited to 100 certificates)
ozarklakes.com
ozarklakes.com
gmfiinancial.com
wwwdrivesavvy.com
ggo365.com
ozarklakes.com
figueroacpa.com

Certificate

The complete raw certificate details for ozarklakes.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 407938698002197789982452644259106863814458
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-15 05:07:23 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-14 05:07:22 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ozarklakes.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 716003178415097684539774070749684793153396132764611176628477479168027117004516796211213221157034532766209246869042130960850082722844515125709584979799140704512543134383602421633824525362640149866142715303291891914560644955152357629497713428195367329857385130819876568404840357076331048989559434438261691649521804189271340305105148129849756756407572075524109227749165511475056554478468181805766213597085548413460796841043169829165227837216616893672510547166767697229332326448102435652683826760393429510255806668106680323312409551114143556811730282861015356054012081202749730669600765007085699126060833625695208007798874305966211553552342153457313189537892520913515119321213420202646936792518602263297557060863968222900751810499395448975112739040712644756910985236514094381683610832438572144853969532949511767146408076567628536344727428815777062371672341026039849251659600941499644313291619590172137439826453299844645632229756841421928416234521730368797227550603876306500772363001282801065248300527988308519446629883942887158456346665096857090000188250244507760675876404548517078699041249995866964377201539082926794143056492497896834965794868438426604078187034862237708522867196143916143839284387782972061760822425187720005524804253963
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							bd8079971a1fa3f1f622910d886ef82266455f53
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ozarklakes.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ozarklakes.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d0bbb5a61000004030047304502210087502c5b0c86d13d24dbfac595a22b44bcaf0d49c24283c7edff1ae9b62dd5e502202af2fea340220559bc05422391d1a2e0ffbb1062179c00697b5a2733d106ada3007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018d0bbb5a6a000004030046304402200f9bce4b502144bee0109aae4e00c1ecfaebaaef3a5e12634f3f401fa971c11f022038e7835795084e002df29dbc72a79e6dbc3650c69dacb9910c0ad7bfd76f6487
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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