winefridges.org

Issued by R3

About this certificate

This digital certificate with serial number 04:ea:79:ad:e1:2b:21:2e:5f:b9:d7:54:4c:db:d3:44:61:ba was issued on by Let's Encrypt.

With 15 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=winefridges.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:ea:79:ad:e1:2b:21:2e:5f:b9:d7:54:4c:db:d3:44:61:ba
Serial Number (int): 428236957008346329260430350781562956833210
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 34:06:88:e6:2f:7e:d8:c1:b1:ef:a4:8d:4b:50:f7:7e:6f:c4:0f:a6
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 4b:a6:21:a1:93:7d:20:c0:52:9e:b4:41:24:67:44:89:65:20:3f:a0
Fingerprint (sha256): 20:77:47:10:60:e0:32:7a:50:90:e4:31:b1:0c:59:2e:d0:37:dc:fc:61:94:5b:e6:e8:4d:f7:fd:1c:3b:b2:1a

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate winefridges.org

15

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for winefridges.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

appletonsatellitetv.com
band-source.com
fatherblogs.com
hallsburg.com
healthcareforvip.com
jamesmhill.info
labordiscrimination.com
lindellrecovery.org
mnmeetings.statenationals.us
oliveoilwarehouse.com
payettecounty.com
raisons.in
richardmorris1031.com
savines.com
winefridges.org

Other certificates including the domain name winefridges.org

(limited to 100 certificates)
sex-store.org
winefridges.org
a-sap.ca
winefridges.org
halfmarathonclub.org
canadaslandtrust.ca
winefridges.org
enerpactoolsgroup.be
winefridges.org

Certificate

The complete raw certificate details for winefridges.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNZ8hwdyVaarm4cG+Ugh
s8Zd+NxfK6JsMHkSC2Lk8ouIPQHFmhpyDGS8CQG0LkZ8Oq5njpxj+gOYfodMSNU/
pTqkChmIOwXQ1WLJlQ0S85NHeTwun7JGqgQPItxeyDTgQsz+S3lhbRbt7+cSWiBn
iEy7aIq1+hPh95CUl1yr8gB8IK0EdjU2zi1Hpk1Gb3jbwgQEJAYdKrni7q6nQXQb
ljxVnXW6+5OqfOI1JkvsCoPpLqby/s/6djtrVyeFIM3Rh4t6C/mqO+PusRouRMmo
/el9D4yb4KL8XVPN/aV/bMYGgGG/BKS5M+xsvrbDTFMIFGmtDl8DRnz4TX+5Webz
KwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 428236957008346329260430350781562956833210
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-26 01:05:46 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-25 01:05:45 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'winefridges.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23333615317038500559849272858880720017657395327771097218220590229360044406704738285005920724914257439412046300834509210584973622397262835224756882760101875009345995717022514018791771813001293450725383197772539814596927640199021751381195879116498940269197105602553225792972514353753825403760365390862906394498377717054811298248106350990371003348665935660736203448320805389026237433565624741508454148562009646126263515292960888405726632609823244802658035796647850155170221146994851320760071238053775569728389782263492484617680892664447605149441864563050850610227764347086955745543233425172400906204938407672065147990827
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							340688e62f7ed8c1b1efa48d4b50f77e6fc40fa6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (300 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'appletonsatellitetv.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'band-source.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fatherblogs.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hallsburg.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthcareforvip.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jamesmhill.info'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'labordiscrimination.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lindellrecovery.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mnmeetings.statenationals.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oliveoilwarehouse.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'payettecounty.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'raisons.in'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'richardmorris1031.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'savines.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'winefridges.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f20077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d438417500000040300483046022100c5bf135495f215d0ad7d7d309b1469333ff1e6768a1c84c221e002221ad268dc022100f8e5dcd0a6bcbf28e3b22a578c8d7a48f3e56ed9155003d89a1229ff6d35a031007700a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d4384174b000004030048304602210088b191b3cb689a4afa006656a544e22ca058708d77c2ee68ace37832eadd2f38022100e102aa5c8237d8c59a3bb390d02c0ad04e0c011c849a3bf55fa1073ca851a144
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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