www.twelvepoints.photography

Issued by R3

About this certificate

This digital certificate with serial number 03:93:dc:1a:30:1e:7f:6a:57:ac:22:e4:77:3a:3d:4e:b9:92 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=www.twelvepoints.photography

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:93:dc:1a:30:1e:7f:6a:57:ac:22:e4:77:3a:3d:4e:b9:92
Serial Number (int): 311650931867421636473658483853850271725970
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: c2:05:c3:5c:62:f2:99:d5:a3:e9:41:27:22:f1:d6:0c:95:b3:d8:d4
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): ec:72:9b:5c:d4:37:9c:9c:d2:da:35:a3:f5:23:3c:90:ca:40:10:6f
Fingerprint (sha256): 19:48:c5:0e:51:43:c5:bd:f5:d1:23:88:e5:92:34:55:bb:aa:99:9e:19:e4:ff:35:76:01:c3:56:75:83:12:df

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate www.twelvepoints.photography

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.twelvepoints.photography

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.twelvepoints.photography

Other certificates including the domain name twelvepoints.photography

(limited to 100 certificates)

Certificate

The complete raw certificate details for www.twelvepoints.photography in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgBxnbgzD//7AYo41kZWy
CJiRO59DIhIZoOZACo/QZr6yRtEbnK6QIj625EZI8Op7eS89XeL9T4Toh8Ien09N
AFlrKflEw288mIQl/vEWwJeFSviqmFU+jBLmxcWI2WFZZKQQSWE/+Qd0EJK1QaBl
Iaxcpqj4aCOv6EjCPHKOlpfB3CuDk4Z9RMX48kvXRMK968tYFZRrw7MQOHbpFGH9
38gdky51A1QFjg3hFCcK1B/qXuT26vrsfQmIz+WXIWIBZYBUGBogiBX0535V+9fR
8Xp3dQrb/n53xsSLqJ5nERSw/rSZBdy8ZXq0k28a6nAOLqI9PSDEyRpNAXtt26GE
FwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 311650931867421636473658483853850271725970
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-13 14:37:48 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-13 14:37:47 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.twelvepoints.photography'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16172509581416910839003549384988611220365039527084062450997148357341646517088437343654540153920302072654044898317691951600022882615360254932500402434553182357822358019997559898857402504896921681696505768377811282481760475774350315790125750562369617343298574989012028685183031517309775342344744081971711778195052171759180772458680199219749474982479625976297871712518670107721010280404431391201657094049372400050403053456421029456522580174201504799037282250304589014915898867720805665263143532297827485834216362279257487062208309997294881307844547888809411678625078229260835646945715276405569684908954053589395147162647
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c205c35c62f299d5a3e9412722f1d60c95b3d8d4
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.twelvepoints.photography'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f20077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018da31dfefb0000040300483046022100c3964cf69d7b843603233e066655e7793ff4f383367c385d7c1857af1fbde3f2022100d082676105cc6c9b0ad0c89a4b46f66e3c362db76b1c85e8474394627c24298c007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018da31e00e50000040300483046022100c78b06342d95a335e973ee59f2235da242bb649005a356b5b2f0f4782324e249022100eeec3c40cddba334342cb9d85e5a7e7b1f6e628a18ee66c2c50fb4180d6b9bd8
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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