premiumliving.org
Issued by R3
About this certificate
This digital certificate with serial number 04:5f:d0:ac:8b:be:0d:26:a9:5c:f8:fe:ef:72:27:c9:2b:ac was issued on by Let's Encrypt.
With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=premiumliving.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:5f:d0:ac:8b:be:0d:26:a9:5c:f8:fe:ef:72:27:c9:2b:acSerial Number (int): 381053343917025426936828498844289289759660
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 6e:f7:ff:91:5f:c3:8c:65:65:34:a1:c2:83:ff:49:a0:2d:b8:45:8a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c5:30:5b:ce:2a:43:e3:3d:17:38:ce:35:18:a3:8a:88:28:ad:76:79
Fingerprint (sha256): 0f:80:32:d0:f4:4d:dc:d0:f3:ef:f4:e0:3f:72:a3:19:00:4a:e9:e3:ac:ef:61:60:02:15:4c:67:a6:1a:ad:1d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate premiumliving.org
12
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for premiumliving.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
businesscancer.com
canibuild.technology.shopalamoheights.com
doctorbenlynch.com
dragculture.com
gardeningmagazine.in.decriminalisehomeschooling.com
haxpace.com.anselmpublishing.com
lukesmith.top
moso.co.catalogmanagement.com
premiumliving.org
softwareopportunity.com
thedecemberists.com
vert-tige.com
canibuild.technology.shopalamoheights.com
doctorbenlynch.com
dragculture.com
gardeningmagazine.in.decriminalisehomeschooling.com
haxpace.com.anselmpublishing.com
lukesmith.top
moso.co.catalogmanagement.com
premiumliving.org
softwareopportunity.com
thedecemberists.com
vert-tige.com
Other certificates including the domain name premiumliving.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for premiumliving.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGGjCCBQKgAwIBAgISBF/QrIu+DSapXPj+73InySusMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMjgxMjUxNTdaFw0yNDAzMjcxMjUxNTZaMBwxGjAYBgNVBAMT EXByZW1pdW1saXZpbmcub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/3mQHyLnzVyEAU10CMJq4niYoNaBABEae6ykYjjtdcWX3x6f+L3A3tVGlPx nF72Zfan/1N8/OklAtq0PKahvDC+iys5wdP91oQf8E4d/XebrdQkcnHoDme41WtD FsEQog2pWDwdbkilK+nQq2XBvKubfV84dxpknMLe8c9xAKBfNkljQpNZ6NR4xoeI AZdykXDzpX4Vp8FLGhJXfcb4Nh0x+Vt0InKqkB1jtqQujsivCH+Z2YxXfIv9tFCn zihJ/3Zm0hlIgEjiGswAQLEjOtFzPUGiuT8Z7BCnapwlYYO0a5gruH+7kqcsfbOz xrCgvbSH4dPSdf7YkoFL0QQ0SQIDAQABo4IDPjCCAzowDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0G A1UdDgQWBBRu9/+RX8OMZWU0ocKD/0mgLbhFijAfBgNVHSMEGDAWgBQULrMXt1hW y65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6 Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iu b3JnLzCCAUYGA1UdEQSCAT0wggE5ghJidXNpbmVzc2NhbmNlci5jb22CKWNhbmli dWlsZC50ZWNobm9sb2d5LnNob3BhbGFtb2hlaWdodHMuY29tghJkb2N0b3JiZW5s eW5jaC5jb22CD2RyYWdjdWx0dXJlLmNvbYIzZ2FyZGVuaW5nbWFnYXppbmUuaW4u ZGVjcmltaW5hbGlzZWhvbWVzY2hvb2xpbmcuY29tgiBoYXhwYWNlLmNvbS5hbnNl bG1wdWJsaXNoaW5nLmNvbYINbHVrZXNtaXRoLnRvcIIdbW9zby5jby5jYXRhbG9n bWFuYWdlbWVudC5jb22CEXByZW1pdW1saXZpbmcub3Jnghdzb2Z0d2FyZW9wcG9y dHVuaXR5LmNvbYITdGhlZGVjZW1iZXJpc3RzLmNvbYINdmVydC10aWdlLmNvbTAT BgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AHb/ iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjLCyNNMAAAQDAEYwRAIg Dj4rrU93jh/f/soXwPj1vGfMzHqziNq0jFsIXSB391YCICm4LkJ9G7/2mse5jKu8 8eFAgtUQoyEQPKw5Pr8WdWjzAHYAKdA6G7Z0qnEc0wNbZVfBT4qni0/oOJRJ7KRT +US9JGgAAAGMsLI1NQAABAMARzBFAiEAiBkTJi1OqMsAOm08OUeDiAHaq/IFqWUj KzfyZwh8QnACIBbJ3SFtUWoqLnNKZqIEJLqzI09uPOYIgV1KSTxRxtgqMA0GCSqG SIb3DQEBCwUAA4IBAQBCpe+PH/JM48epHyrT+TYP8dkSzqy8o28vmhE1umOpGsCt ksLWbJl/Zi1raGDmNB+CoFUAczdZUEo3f/kOxy2QZpABjjPF9HKVyHcS6OcrWSb5 iO/L57KXvl0UFzAyOf5dZ2qqj9090B16XAAvZ5rV4rjDwGp5nQmQKB9rOEki6xrg S3HQoXgPvkylFCwq7YFTbj3Br8TgglNcuelCd+qKu1g8pVjZz0pkuk70bVamYcIy eR3pwAS2btJwYQrH8Q8ZoT8S4geZDg9a3LrMSEQesVzZp5qpzhSBn2Y4sM4qXvv2 0V4MHgw/8+MsAaAM30ZsWkXE8XJ+GMmZE4dN8pfR -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/3mQHyLnzVyEAU10CMJ q4niYoNaBABEae6ykYjjtdcWX3x6f+L3A3tVGlPxnF72Zfan/1N8/OklAtq0PKah vDC+iys5wdP91oQf8E4d/XebrdQkcnHoDme41WtDFsEQog2pWDwdbkilK+nQq2XB vKubfV84dxpknMLe8c9xAKBfNkljQpNZ6NR4xoeIAZdykXDzpX4Vp8FLGhJXfcb4 Nh0x+Vt0InKqkB1jtqQujsivCH+Z2YxXfIv9tFCnzihJ/3Zm0hlIgEjiGswAQLEj OtFzPUGiuT8Z7BCnapwlYYO0a5gruH+7kqcsfbOzxrCgvbSH4dPSdf7YkoFL0QQ0 SQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 381053343917025426936828498844289289759660 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-28 12:51:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-27 12:51:56 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'premiumliving.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23226812279883468234112339301488068279035893411814340952332159325132174808198405924662553315445110429824207632209445229454421338829569893680093225471458765325256884506262646390627721438516117785340845580124464199829030402088765903899650417187132430902430568053786299545141106109854211444633632403909538593798005193826529896913519163059802368311880299780580711292151524572231229199754492487549022131311076277660912050997696307256694528495917666600981070737331751174439306803055116307311453430275204186270176856249243343332395925273016359675766231418274318764472375541466349154848777539148709787353572911048507252814921 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6ef7ff915fc38c656534a1c283ff49a02db8458a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (317 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'businesscancer.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canibuild.technology.shopalamoheights.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'doctorbenlynch.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dragculture.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gardeningmagazine.in.decriminalisehomeschooling.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'haxpace.com.anselmpublishing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lukesmith.top' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'moso.co.catalogmanagement.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'premiumliving.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'softwareopportunity.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thedecemberists.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vert-tige.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018cb0b234d3000004030046304402200e3e2bad4f778e1fdffeca17c0f8f5bc67cccc7ab388dab48c5b085d2077f756022029b82e427d1bbff69ac7b98cabbcf1e14082d510a321103cac393ebf167568f300760029d03a1bb674aa711cd3035b6557c14f8aa78b4fe8389449eca453f944bd24680000018cb0b235350000040300473045022100881913262d4ea8cb003a6d3c3947838801daabf205a965232b37f267087c4270022016c9dd216d516a2a2e734a66a20424bab3234f6e3ce608815d4a493c51c6d82a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0042a5ef8f1ff24ce3c7a91f2ad3f9360ff1d912ceacbca36f2f9a1135ba63a91ac0ad92c2d66c997f662d6b6860e6341f82a05500733759504a377ff90ec72d906690018e33c5f47295c87712e8e72b5926f988efcbe7b297be5d1417303239fe5d676aaa8fdd3dd01d7a5c002f679ad5e2b8c3c06a799d0990281f6b384922eb1ae04b71d0a1780fbe4ca5142c2aed81536e3dc1afc4e082535cb9e94277ea8abb583ca558d9cf4a64ba4ef46d56a661c232791de9c004b66ed270610ac7f10f19a13f12e207990e0f5adcbacc48441eb15cd9a79aa9ce14819f6638b0ce2a5efbf6d15e0c1e0c3ff3e32c01a00cdf466c5a45c4f1727e18c99913874df297d1