prairiesage.org

Issued by R3

About this certificate

This digital certificate with serial number 03:cb:50:c6:0c:9b:04:ad:cf:b9:f1:b7:ae:d9:0d:97:2f:4d was issued on by Let's Encrypt.

With 18 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=prairiesage.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:cb:50:c6:0c:9b:04:ad:cf:b9:f1:b7:ae:d9:0d:97:2f:4d
Serial Number (int): 330521544850342759687336520734814961610573
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 1c:00:48:aa:c4:51:38:ff:b8:f6:1b:e2:21:dd:fe:9e:af:a3:3c:e2
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 89:8b:81:7a:90:02:57:80:e5:f8:6a:85:86:12:1d:79:17:3c:6f:2a
Fingerprint (sha256): 11:44:4c:c3:7b:4c:90:c9:b1:d2:51:0d:29:2f:24:e9:7f:6f:74:af:68:6b:0d:72:9a:bb:e8:31:c6:59:39:48

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate prairiesage.org

18

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for prairiesage.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ammocash.com
carbcbd.com
chillermax.com
entertainmentlawyerla.co
ferguscounty.com
gayalps.com
jodhpurdentist.in
matic.services
monorhythm.com
night4vip.com
philadelphiachristianschools.com
pianotampa.com
prairiesage.org
quloyalty.com
stopina.com
townercounty.com
truthofficer.com
weegensalvage.com

Other certificates including the domain name prairiesage.org

(limited to 100 certificates)
prairiesage.org
mikefarina.com.prairiesage.org
factrating.com.soils.net.georgevalentino.com.prairiesage.org
mikere.id
prairiesage.org
prairiesage.org
prairiesage.org
showaudit.com.prairiesage.org
prairiesage.org
saintflanagan.ie

Certificate

The complete raw certificate details for prairiesage.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGHTCCBQWgAwIBAgISA8tQxgybBK3PufG3rtkNly9NMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yNDAzMTIwMzU2MDFaFw0yNDA2MTAwMzU2MDBaMBoxGDAWBgNVBAMT
D3ByYWlyaWVzYWdlLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AONo1KNF0e+65x5PCZZ51S2Y9aK45YFUmSDxhtanGC5FzQD5kMv88XuOKkLIMHrU
AeAc/cKWKZ56D0IJkP+Nt71q31ijrV+8veLWs3WXVG1U8Mto2iFMqEri6vr8pO50
8wNerdKvcYTwj9voXiCMKQvn/faTDo4U1XYPacytJMBQ1CLV93quWWjo07OBOXyo
P9yleIuwlgrxPaxktPq98Rgwpogpfv94XVoMrvASP8jRnQ0e48DDCodr4mh+Hp0d
XkqIivuMDN7ZhEda0ufd1eEJvjZJUvU20IiLkcP8PMRA0WoGTgA08ugtFPECffYn
u4a/rXLG6HpoFmSe/8b+YM0CAwEAAaOCA0MwggM/MA4GA1UdDwEB/wQEAwIFoDAd
BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV
HQ4EFgQUHABIqsRROP+49hviId3+nq+jPOIwHwYDVR0jBBgwFoAUFC6zF7dYVsuu
UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v
cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y
Zy8wggFJBgNVHREEggFAMIIBPIIMYW1tb2Nhc2guY29tggtjYXJiY2JkLmNvbYIO
Y2hpbGxlcm1heC5jb22CGGVudGVydGFpbm1lbnRsYXd5ZXJsYS5jb4IQZmVyZ3Vz
Y291bnR5LmNvbYILZ2F5YWxwcy5jb22CEWpvZGhwdXJkZW50aXN0Lmlugg5tYXRp
Yy5zZXJ2aWNlc4IObW9ub3JoeXRobS5jb22CDW5pZ2h0NHZpcC5jb22CIHBoaWxh
ZGVscGhpYWNocmlzdGlhbnNjaG9vbHMuY29tgg5waWFub3RhbXBhLmNvbYIPcHJh
aXJpZXNhZ2Uub3Jngg1xdWxveWFsdHkuY29tggtzdG9waW5hLmNvbYIQdG93bmVy
Y291bnR5LmNvbYIQdHJ1dGhvZmZpY2VyLmNvbYIRd2VlZ2Vuc2FsdmFnZS5jb20w
EwYDVR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgA7
U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAY4xBHtcAAAEAwBHMEUC
IBG7dDWyXcips0ZYYF9HwzI+E1GiU+X2eOgErEGStPOFAiEAq6XoQI6es8zE9zzX
d3Xn8mzEMFEcEce8vuIwIG//puwAdwCi4r/WHt4vLweg1k5tN6fcZUOwxrUuotq3
iviabfUX2AAAAY4xBHtlAAAEAwBIMEYCIQD+UASFp39uhUFlpYzmQRI80ttOO6wa
qsTzCa5d0rggjgIhAKsBoqNwqpLSGPvdNfKtQmkElFLFgL/ilnsusSFD+Px0MA0G
CSqGSIb3DQEBCwUAA4IBAQCPQRc2G7dVhRISxyieqbK8sjcUhEg552caHXvb4K6Z
ubHywzD4s8UQwR0MbW2CtWZt5Vhrj5hOzOdPs8BYqI5efIk+DckOBSn2sQpYWaO3
mS/AmRiwaPz5/YTpdFJdNebV6bGu4cx6iBN9f2Iu2zf7He8TjozIlwVGNN0vi2vy
/RDLbQ/aRTLbZJCy/CFBdIVr6FYWpiYxjp4Cs1K5vqJOKsSp7qv+miEkQ7B3s6Qg
xx2ZLh5sWbgl8jmk/gLiH3i4F0YLlDkHCPUjcH3O2lp01z7LM5pM3qY2aw2R7HXn
UgFCof3NYs6ouuRrTIR/f3D1KXai0LjFMaOavuTs5ooi
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA42jUo0XR77rnHk8JlnnV
LZj1orjlgVSZIPGG1qcYLkXNAPmQy/zxe44qQsgwetQB4Bz9wpYpnnoPQgmQ/423
vWrfWKOtX7y94tazdZdUbVTwy2jaIUyoSuLq+vyk7nTzA16t0q9xhPCP2+heIIwp
C+f99pMOjhTVdg9pzK0kwFDUItX3eq5ZaOjTs4E5fKg/3KV4i7CWCvE9rGS0+r3x
GDCmiCl+/3hdWgyu8BI/yNGdDR7jwMMKh2viaH4enR1eSoiK+4wM3tmER1rS593V
4Qm+NklS9TbQiIuRw/w8xEDRagZOADTy6C0U8QJ99ie7hr+tcsboemgWZJ7/xv5g
zQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 330521544850342759687336520734814961610573
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-12 03:56:01 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-10 03:56:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'prairiesage.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28707789130872811922201202809324038892379672008914044029925715502468412155789067588394963979245977082077137053521203334352005300904409993398855943277671772283177409130797752309816099495302576924202081793341246865898825790445789977536041397242412159890520787463403099948910632251142095850371444083708777842442236547538219052081834940241127739173848327744541833577386190595449312734599867151921248462681434389435703956051444413350545535730456759224808229277651641226324758387179828868931791784670940110726279649590710602404986118318181800791072581376805846407472466798933221741961632995934812590283353953976061488160973
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							1c0048aac45138ffb8f61be221ddfe9eafa33ce2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (320 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ammocash.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'carbcbd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chillermax.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'entertainmentlawyerla.co'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ferguscounty.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gayalps.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jodhpurdentist.in'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'matic.services'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'monorhythm.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'night4vip.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'philadelphiachristianschools.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pianotampa.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prairiesage.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'quloyalty.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stopina.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'townercounty.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'truthofficer.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'weegensalvage.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e31047b5c0000040300473045022011bb7435b25dc8a9b34658605f47c3323e1351a253e5f678e804ac4192b4f385022100aba5e8408e9eb3ccc4f73cd77775e7f26cc430511c11c7bcbee230206fffa6ec007700a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e31047b650000040300483046022100fe500485a77f6e854165a58ce641123cd2db4e3bac1aaac4f309ae5dd2b8208e022100ab01a2a370aa92d218fbdd35f2ad4269049452c580bfe2967b2eb12143f8fc74
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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