crusherathletics.org
Issued by R3
About this certificate
This digital certificate with serial number 04:7a:70:9a:4a:b2:ef:3c:e0:ba:c3:be:57:3b:28:20:fb:0b was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=crusherathletics.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:7a:70:9a:4a:b2:ef:3c:e0:ba:c3:be:57:3b:28:20:fb:0bSerial Number (int): 390113267155714568182161753384420655561483
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 6a:13:08:ea:9f:71:4c:30:27:76:33:66:48:cd:ef:28:2f:83:18:91
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): cc:45:cd:2e:ea:7a:a4:4f:3a:96:48:a3:f3:3d:ba:a2:65:07:b4:6b
Fingerprint (sha256): 10:e8:5a:f2:5b:8e:d4:47:cc:e0:5c:0d:40:5b:07:d8:99:04:c6:65:af:88:98:58:62:fb:53:87:ca:a4:89:c1
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate crusherathletics.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for crusherathletics.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
crusherathletics.org
www.crusherathletics.org
www.crusherathletics.org
Other certificates including the domain name crusherathletics.org
(limited to 100 certificates)
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
static.crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
static.crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
crusherathletics.org
Certificate
The complete raw certificate details for crusherathletics.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISBHpwmkqy7zzgusO+VzsoIPsLMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MDEwMjM0MjdaFw0yNDA3MzAwMjM0MjZaMB8xHTAbBgNVBAMT FGNydXNoZXJhdGhsZXRpY3Mub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAhnVwGMuXkODCsUpf8Nkofhz5monr798nbzQWvF960D4Ogt5YIO2ns1B9 0dI3dxglkdJS2NqbEgKlm8jDt8DJ/ZynGSsHFrzQ8DgCz4F1ik1I1B/l23Wm5D1E G68lMoQEnA4jkeLSzKOzl/L7+jFAmmnr9Y7NvHcRMmtI2IjC9IuNTt7eMYdCqKDQ A/SbQwsgDo94RwLoHGxBa44h1FDE2imYxnShX+HxOVPQ2V0ESw0CKMDqCVVbIshp 0RqeT5CsebknRmQFKuX+wRq7UE+4IX4ThMMxhETyXKAj1qkHllRlUdRM1NKLOMyK A1kgt8qbCTGzl/v8vX74pkEd3GUi1QIDAQABo4ICMDCCAiwwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBRqEwjqn3FMMCd2M2ZIze8oL4MYkTAfBgNVHSMEGDAWgBQULrMX t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0 dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu Y3Iub3JnLzA5BgNVHREEMjAwghRjcnVzaGVyYXRobGV0aWNzLm9yZ4IYd3d3LmNy dXNoZXJhdGhsZXRpY3Mub3JnMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYB BAHWeQIEAgSB9QSB8gDwAHYAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8ohez4 ZG4AAAGPMjfKbwAABAMARzBFAiAvt+5ONoadoUS2Dlzk1WFYTJBSk5tNg+sWeORk pJrY5AIhAN00hleeNWJpTqoNKiTkVw8rkkDifsH/13/Af1Y+VHyNAHYAdv+IPwq2 +5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGPMjfKpAAABAMARzBFAiEAu6oJ zh+hOYL/sEWauaa/ZNA24ZFHHZNc4pPMMePiLEMCIF0NtI7kCPHSqg75DSDAtfdQ M1KGPmCKfgnL5SDP2m27MA0GCSqGSIb3DQEBCwUAA4IBAQBEXPeaM9srbuR7+QSP D1dWc6p51jSiiqX9GsOrt4we6u98caHlUcTGtIXCZ6XUrpmPjNrSVbnw4hp1Dr4t 4VDTBysvngABoXOGsQ9gw5I4X2tzulbrr7zQUwpy0/5uuPgqIrD/rzKUCg4Xo8Nw hxkQXALf6+pewknswyhRX96NLR3iX8WBzsUD6jskkTT10/Pdfu5nKn7tHs+2CwfB pf7RXtxvV3QrEC6DPSQiS1LTV9ahyKgXPH4vqbkwSO0C1OyzFIEQ68me0Ybz47L8 PNfbkWs+sju1FJRWaBb0EpDy18gA2gWyw2twj4JjlhfqkYX2T0S4O4MZdAxyt3/5 dMdA -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhnVwGMuXkODCsUpf8Nko fhz5monr798nbzQWvF960D4Ogt5YIO2ns1B90dI3dxglkdJS2NqbEgKlm8jDt8DJ /ZynGSsHFrzQ8DgCz4F1ik1I1B/l23Wm5D1EG68lMoQEnA4jkeLSzKOzl/L7+jFA mmnr9Y7NvHcRMmtI2IjC9IuNTt7eMYdCqKDQA/SbQwsgDo94RwLoHGxBa44h1FDE 2imYxnShX+HxOVPQ2V0ESw0CKMDqCVVbIshp0RqeT5CsebknRmQFKuX+wRq7UE+4 IX4ThMMxhETyXKAj1qkHllRlUdRM1NKLOMyKA1kgt8qbCTGzl/v8vX74pkEd3GUi 1QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 390113267155714568182161753384420655561483 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-01 02:34:27 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-30 02:34:26 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'crusherathletics.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16973843641628438978763190989291750364384600619617476371401924733056744459621527261433981505941361897414405942429376310648061697114192532948834920087348064977604007826056698079399847241820258805445977966639576506621186044176053027718605547104647477894260314719048794883308661013159800772757250300815549975670877140023283413131760512595779378627803570569804969583368514436934948122273600151224329317432631585193211657955679603220400482327349859980387840353668856647321542490122171155817362864539117894803257586116085030752607524704830619876471011101193709796553534006550162908649018984906659457343878522567933680755413 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6a1308ea9f714c302776336648cdef282f831891 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'crusherathletics.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.crusherathletics.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f3237ca6f000004030047304502202fb7ee4e36869da144b60e5ce4d561584c9052939b4d83eb1678e464a49ad8e4022100dd3486579e3562694eaa0d2a24e4570f2b9240e27ec1ffd77fc07f563e547c8d00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018f3237caa40000040300473045022100bbaa09ce1fa13982ffb0459ab9a6bf64d036e191471d935ce293cc31e3e22c4302205d0db48ee408f1d2aa0ef90d20c0b5f7503352863e608a7e09cbe520cfda6dbb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00445cf79a33db2b6ee47bf9048f0f575673aa79d634a28aa5fd1ac3abb78c1eeaef7c71a1e551c4c6b485c267a5d4ae998f8cdad255b9f0e21a750ebe2de150d3072b2f9e0001a17386b10f60c392385f6b73ba56ebafbcd0530a72d3fe6eb8f82a22b0ffaf32940a0e17a3c3708719105c02dfebea5ec249ecc328515fde8d2d1de25fc581cec503ea3b249134f5d3f3dd7eee672a7eed1ecfb60b07c1a5fed15edc6f57742b102e833d24224b52d357d6a1c8a8173c7e2fa9b93048ed02d4ecb3148110ebc99ed186f3e3b2fc3cd7db916b3eb23bb51494566816f41290f2d7c800da05b2c36b708f82639617ea9185f64f44b83b8319740c72b77ff974c740