domainconcepts.org
Issued by R3
About this certificate
This digital certificate with serial number 04:ef:30:bb:b7:d0:4e:9e:e4:fc:d4:9f:b3:12:93:b2:86:84 was issued on by Let's Encrypt.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=domainconcepts.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:ef:30:bb:b7:d0:4e:9e:e4:fc:d4:9f:b3:12:93:b2:86:84Serial Number (int): 429841407052640248522539739718808157456004
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e1:c3:b7:38:7c:72:e8:46:a8:e5:f0:9c:cc:27:8b:76:c7:26:71:dc
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): cb:36:5a:6a:84:10:4c:55:e5:1c:e7:2e:ff:ca:8f:af:a8:d2:3f:10
Fingerprint (sha256): 1c:58:e3:3b:97:fd:40:37:11:b1:dd:63:58:16:17:e8:95:92:05:c0:9f:b1:6d:fc:3d:b1:f2:45:fa:02:3e:0d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate domainconcepts.org
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for domainconcepts.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
domainconcepts.org
worldsgreatestdomains.com
www.domainconcepts.org
www.pentix.com
www.worldsgreatestdomains.com
worldsgreatestdomains.com
www.domainconcepts.org
www.pentix.com
www.worldsgreatestdomains.com
Other certificates including the domain name domainconcepts.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for domainconcepts.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgISBO8wu7fQTp7k/NSfsxKTsoaEMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MTkwOTAxMDNaFw0yMzEyMTgwOTAxMDJaMB0xGzAZBgNVBAMT EmRvbWFpbmNvbmNlcHRzLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANZRLEg64lJv58BwVlu9A3Tj2hDJP6uagu1+lDC1GR/oj61F/wrK0cn76f/6 PDmHyZI5g9c5FySGhKsvV3ofbylDVtDcqTEsuyQHHi91s0vw17aJ8g8RqLCCBTIT wUYViI9s2sb070frqpFonUAB4+Ar3LP/Y3ch9jUo2fXoGELNdOA1CaL87ykp2+R8 HNwE0+t33C5C5kKVWMb0SzWsE/C4fbRYuuVeVBtN6z0sXj3io5yoInBIIw0rV5KG yqQkiZoZBNEHXakOuvNe1lRa/GRT0mba7zzZZ23e45Bz21NVDWvstL/wQBGO/x8A LxrGsloU9e2k+OUhB2SeNi7hVasCAwEAAaOCAnUwggJxMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQU4cO3OHxy6Eao5fCczCeLdscmcdwwHwYDVR0jBBgwFoAUFC6zF7dY VsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRw Oi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNy Lm9yZy8wfwYDVR0RBHgwdoISZG9tYWluY29uY2VwdHMub3Jnghl3b3JsZHNncmVh dGVzdGRvbWFpbnMuY29tghZ3d3cuZG9tYWluY29uY2VwdHMub3Jngg53d3cucGVu dGl4LmNvbYIdd3d3Lndvcmxkc2dyZWF0ZXN0ZG9tYWlucy5jb20wEwYDVR0gBAww CjAIBgZngQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdgB6MoxU2LcttiDq OOBSHumEFnAyE4VNO9IrwTpXo1LrUgAAAYqs4t/rAAAEAwBHMEUCIQD4OCmR7YXa BjXhYNDF20ikRAGU4CJChPWMQNOmlMeDlwIgNG5vfx1gDHDCdWNA7FrtwYOdR6d9 n5kifJl6HdfKkqwAdQDoPtDaPvUGNTLnVyi8iWvJA9PL0RFr7Otp4Xd9bQa9bgAA AYqs4t+UAAAEAwBGMEQCIAun0GK0wirWp/oGtMvIa70IXwT5RCPjWzHJSCkpppyP AiAD4Lr3LD+4DgNKqaMVVn/x+ALR+xmdcoNaP8nCjTi6kjANBgkqhkiG9w0BAQsF AAOCAQEABnIK8AK/V14W8ZdUgCDPadYm7X8F1Hu2Ab6ftrgL+rQEOjMoS1BRsws0 uzN5IVBT7PwmFoQkcsy5oy0opvj1mrBJYgWeFoI3Qsx2Cyt9BU5/uOTFu3n5AUAk +7ZaPoAwIjvnqkQxptKlwHSaIISsnG/mls4Zw5x0BttEIsuzvgMcpqvQjFha5flZ cINAnTBfjuPhw4mY0Ohyl9MvZg4uko+e96kpZ3CZcj5/IxJxRbJDqCTrmTD9krGx QN5DpBkQ5ecl9jN1nthuU33Je+erEuW5dC7yZ3dsQioXfqYyYgrbEb4+NnG5IOKb vm3U2/81xv+7tccheB4L/8nIhkw16g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1lEsSDriUm/nwHBWW70D dOPaEMk/q5qC7X6UMLUZH+iPrUX/CsrRyfvp//o8OYfJkjmD1zkXJIaEqy9Xeh9v KUNW0NypMSy7JAceL3WzS/DXtonyDxGosIIFMhPBRhWIj2zaxvTvR+uqkWidQAHj 4Cvcs/9jdyH2NSjZ9egYQs104DUJovzvKSnb5Hwc3ATT63fcLkLmQpVYxvRLNawT 8Lh9tFi65V5UG03rPSxePeKjnKgicEgjDStXkobKpCSJmhkE0QddqQ66817WVFr8 ZFPSZtrvPNlnbd7jkHPbU1UNa+y0v/BAEY7/HwAvGsayWhT17aT45SEHZJ42LuFV qwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 429841407052640248522539739718808157456004 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-19 09:01:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-18 09:01:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'domainconcepts.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27055025149625324425041049652313438826844302178291525791743718921449083042446285004902052603091161733195966910666317031613078774152722613215116165689183415816372594242927492129108102653871887583611895588022111220062042135379753833907163416626688201595384605515474801271491086949593383908575982066933181906956910767261436649754094639264726839495510991752745303738919671602630193639546806269077388525777189798527787050776143915581211003483174739488804447047270414377372624237217058428649170569292409061038030297915813653447292898626593252180612675779375034393759602319779029527844590148619716293024079471633132299572651 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e1c3b7387c72e846a8e5f09ccc278b76c72671dc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domainconcepts.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'worldsgreatestdomains.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.domainconcepts.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pentix.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.worldsgreatestdomains.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018aace2dfeb0000040300473045022100f8382991ed85da0635e160d0c5db48a4440194e0224284f58c40d3a694c783970220346e6f7f1d600c70c2756340ec5aedc1839d47a77d9f99227c997a1dd7ca92ac007500e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018aace2df94000004030046304402200ba7d062b4c22ad6a7fa06b4cbc86bbd085f04f94423e35b31c9482929a69c8f022003e0baf72c3fb80e034aa9a315567ff1f802d1fb199d72835a3fc9c28d38ba92 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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