sculpit.mobi
Issued by R3
About this certificate
This digital certificate with serial number 03:54:ef:77:63:31:46:7f:74:8f:37:c0:a7:ac:e3:42:5c:e3 was issued on by Let's Encrypt.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sculpit.mobi
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:54:ef:77:63:31:46:7f:74:8f:37:c0:a7:ac:e3:42:5c:e3Serial Number (int): 290238882002820880168324294084562063088867
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: fe:37:93:57:d7:10:8b:b9:9b:23:88:5b:46:8c:57:93:0a:72:25:84
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c9:7b:05:ce:0b:24:e9:88:59:f3:0e:c4:6b:bc:9b:0d:f5:a0:4c:b5
Fingerprint (sha256): 20:91:dd:cf:97:17:3a:a8:ad:2a:6f:9b:15:b1:41:47:2d:c9:c8:23:c0:a0:b7:1c:92:4e:9c:9a:a6:9d:2b:a3
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate sculpit.mobi
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sculpit.mobi
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
fundraisingfoundation.com
homeschoolpenpals.com
savvyattorney.com
sculpit.mobi
valleywmllc.com
homeschoolpenpals.com
savvyattorney.com
sculpit.mobi
valleywmllc.com
Other certificates including the domain name sculpit.mobi
(limited to 100 certificates)
www.lorainflea.com.sculpit.mobi
hugabee.ca
exoniaconsulting.ca
playgolf.club
sculpit.mobi
ebaytes.ca
sculpit.mobi
promeia.de
impossible.ca
washingtongirlsbasketball.org
promeia.de
playgolf.club
hugabee.ca
hugabee.ca
promeia.de
sculpit.mobi
grocer.cc
cars101.life
ebaytes.ca
checkout.vc
bud.world
impossible.ca
jenksamericatoastmasters.club
playgolf.club
impossible.ca
sculpit.mobi
stemsterlingranch.org
impossible.ca
hugabee.ca
ebaytes.ca
sculpit.mobi
impossible.ca
ebaytes.ca
ebaytes.ca
impossible.ca
promeia.de
mindmap.me
hugabee.ca
exoniaconsulting.ca
playgolf.club
sculpit.mobi
ebaytes.ca
sculpit.mobi
promeia.de
impossible.ca
washingtongirlsbasketball.org
promeia.de
playgolf.club
hugabee.ca
hugabee.ca
promeia.de
sculpit.mobi
grocer.cc
cars101.life
ebaytes.ca
checkout.vc
bud.world
impossible.ca
jenksamericatoastmasters.club
playgolf.club
impossible.ca
sculpit.mobi
stemsterlingranch.org
impossible.ca
hugabee.ca
ebaytes.ca
sculpit.mobi
impossible.ca
ebaytes.ca
ebaytes.ca
impossible.ca
promeia.de
mindmap.me
Certificate
The complete raw certificate details for sculpit.mobi in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgISA1Tvd2MxRn90jzfAp6zjQlzjMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTYxODQwMTNaFw0yNDA3MTUxODQwMTJaMBcxFTATBgNVBAMT DHNjdWxwaXQubW9iaTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJcp jPa0/JtRowdBBm5RSjXcA/m1vTBL7K6BuNV6tHNJUmBAoYZM4txtLVqRB8lk+TAY gLXbJilDrKMasM39H9a7/g6qkEDQslGB0AsMWE4U7vA5fZ0iZOq089CBpI0drmv2 8N7AYt7hCTUHc9JQD1KdKwwQlXGTxfIcWaPF9fGgs/mRBbdo38ZAb00YtJIvEqWg RykTnwiFBKALkH5DKOGMCGM+msoMbzvePmCkOLRuo5ozWiiqXE//gYb2rl5zNz36 M9zbQTUfoGIy6OKTBSJ0bEwcjLEeXPysAWzphK2w+3udP1oNXFKY4ouvSxuOyx6j rFj4hoE4M5cSFrfVJdUCAwEAAaOCAmQwggJgMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQU/jeTV9cQi7mbI4hbRoxXkwpyJYQwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w bQYDVR0RBGYwZIIZZnVuZHJhaXNpbmdmb3VuZGF0aW9uLmNvbYIVaG9tZXNjaG9v bHBlbnBhbHMuY29tghFzYXZ2eWF0dG9ybmV5LmNvbYIMc2N1bHBpdC5tb2Jpgg92 YWxsZXl3bWxsYy5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5 AgQCBIH1BIHyAPAAdwDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAA AY7obJIfAAAEAwBIMEYCIQC4g4qHKD0TrWcCPRw08LZcVnIcHtwMESTE8zmqL1fl wQIhAPHWV5Ck/SB5WumQx3q4fIgyCvfxTT0QQf7UpTcDl6mcAHUA3+FW66oFr7Wc D4ZxjajAMk6uVtlup/WlagHRwTu+UlwAAAGO6GyS6gAABAMARjBEAiBYwHZGCCX3 iz69YPi5E/8xzjRKpftp//5h5/q6QW+JYgIgDZ3NXYweB99/HljbzcHp503tqiZo 0A2pGRXzUv8SO6IwDQYJKoZIhvcNAQELBQADggEBAAqeubSgEe9BC8BgIPwzYiXq Z5hEA4skeW42bijfcIEVvm/yTS6liDNLHgIBupfGnrqLPtOu6MJDBs6GfePEisjU 6tqkPQrEQK799fYZdxyOS66NWMMFiMgSHcnY5ishK5zoXJoyTTuOQ11lZ6x+Z9US KEl6yLPl7ZvwHIECbpAw3PDoYNDM9nBdBJZIgSZTrmJkH2G9RnD6PiKFpUJKa+qG lnYR/C+S2u7iYgTVWZ8RJa9nhPWETGsiDZ9J4JExPt9t7N8X9qRB0aFxigh7wO0+ XDsPgiLKy2u0AQ1G6Qjp84VBSNbypLSCd41mFJl4WIjlQRZ6hKe2P/9CKEAI8Cw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlymM9rT8m1GjB0EGblFK NdwD+bW9MEvsroG41Xq0c0lSYEChhkzi3G0tWpEHyWT5MBiAtdsmKUOsoxqwzf0f 1rv+DqqQQNCyUYHQCwxYThTu8Dl9nSJk6rTz0IGkjR2ua/bw3sBi3uEJNQdz0lAP Up0rDBCVcZPF8hxZo8X18aCz+ZEFt2jfxkBvTRi0ki8SpaBHKROfCIUEoAuQfkMo 4YwIYz6aygxvO94+YKQ4tG6jmjNaKKpcT/+BhvauXnM3Pfoz3NtBNR+gYjLo4pMF InRsTByMsR5c/KwBbOmErbD7e50/Wg1cUpjii69LG47LHqOsWPiGgTgzlxIWt9Ul 1QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 290238882002820880168324294084562063088867 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-16 18:40:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-15 18:40:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sculpit.mobi' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19082473433837326772849014442945878184021635735988756621012507759407642424949527750685514706321979134268335563751717353497142781232734952991236910369210744466752669091635627167265770498101846473819171558710185954797772872097839927529860766031853591948356190057881990706983359644437046511912281603225364114696800820512069156782835809696344378812572757827132188065359221489147750750084670245413339131391170389794930512692655807374825508141286225098210847250006015100233931563288139823829876393401708257368363501743277180873625856360597039093389875060734520479652662834111031575685328865463156381478798775550849645356501 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fe379357d7108bb99b23885b468c57930a722584 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (102 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fundraisingfoundation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeschoolpenpals.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'savvyattorney.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sculpit.mobi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'valleywmllc.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ee86c921f0000040300483046022100b8838a87283d13ad67023d1c34f0b65c56721c1edc0c1124c4f339aa2f57e5c1022100f1d65790a4fd20795ae990c77ab87c88320af7f14d3d1041fed4a5370397a99c007500dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ee86c92ea0000040300463044022058c076460825f78b3ebd60f8b913ff31ce344aa5fb69fffe61e7faba416f896202200d9dcd5d8c1e07df7f1e58dbcdc1e9e74dedaa2668d00da91915f352ff123ba2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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