sosleaf.com
Issued by R3
About this certificate
This digital certificate with serial number 03:07:b7:b0:09:31:80:58:e4:d8:e1:50:aa:03:f8:c8:4b:80 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sosleaf.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:07:b7:b0:09:31:80:58:e4:d8:e1:50:aa:03:f8:c8:4b:80Serial Number (int): 263962997117666638862012873910569748941696
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ba:52:86:98:03:72:c5:0d:b5:f4:68:b2:84:ba:90:48:92:61:99:05
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 36:6f:f3:c0:32:d7:3b:3a:ec:7c:c6:2b:1c:3c:3b:40:55:88:6a:f6
Fingerprint (sha256): 27:d6:c8:13:d9:b9:d2:01:00:db:b4:55:53:0c:0a:3e:4e:05:ca:fe:0b:71:d0:38:8e:e0:cb:5b:12:c7:f4:ed
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate sosleaf.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sosleaf.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sosleaf.com
www.sosleaf.com
www.sosleaf.com
Other certificates including the domain name sosleaf.com
(limited to 100 certificates)
lasvegassportsmedicine.org
sosleaf.com
romefashionweek.com
sosleaf.com
215leaf.com
www.vigilate.com
www.brainvale.com
happyhourmode.com
xn--stdyo-lva.com
nonqmlending.com
www.buildmything.com
menahemmendel.com
britishwebhosting.com
elisabettagregoraci.com
www.uttak.com
www.gleeck.com
www.inchiostrostampante.com
www.ecoinmagazine.com
chainautica.com
healthywoman.org
www.la420lounge.com
accreditedonlinecolleges.site
www.ducttapedfood.com
sosleaf.com
romefashionweek.com
sosleaf.com
215leaf.com
www.vigilate.com
www.brainvale.com
happyhourmode.com
xn--stdyo-lva.com
nonqmlending.com
www.buildmything.com
menahemmendel.com
britishwebhosting.com
elisabettagregoraci.com
www.uttak.com
www.gleeck.com
www.inchiostrostampante.com
www.ecoinmagazine.com
chainautica.com
healthywoman.org
www.la420lounge.com
accreditedonlinecolleges.site
www.ducttapedfood.com
Certificate
The complete raw certificate details for sosleaf.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9TCCBN2gAwIBAgISAwe3sAkxgFjk2OFQqgP4yEuAMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMzAxNTA0MDBaFw0yNDA2MjgxNTAzNTlaMBYxFDASBgNVBAMT C3Nvc2xlYWYuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuVjo vWmpV8cyIWoGxWriqb6z18sP+xfkNswdwNofWLpRVaZTVwFpUlj8sQB5nLaTdt8x sWiy3NOkHkflaaDg/Q01y3MLhrTn4pRC+LX2atm1ZntHM6rXAkHDQfmwzQxK5EPw CqGmh68/+qBm/3yw3s4JHbG1sAw5aD1C3/Q6Tqxqenub1KtO5X1kIUwENUBJVi1P RqNvA3pWo3JK3pmMLMizo35sDuksi7Y3Cg9UBT3sLgciDy5vrNkoYZVRl6XB9FN+ OS+WgJLDyzSUvf41faVt8Hc11vI/ocDyanY716Bxujmi1yABUliJNyVarbmIzfFq T4MIJe5z4hhnp2PK4CIK4UuZSwmGVsf0IyIbeCZVgFDrouAeL/pCX348r1sMDQym wUTXzagGf9Txp9gNxaEfktj8RpGbJ5RfdZjKvuS3d7QLEoUZHy88gklgJoPUx5+E qwpYgkTc5U3n+BY+RNSvEbgH9masOs8rfIrWPt9K5XPMCnOfNK9i3yBzn7fTJwTF 6YOo2HH3Ne8gyG1EBK6sYcFn9ZiVu5TkAgQzwPQ8tyvw8xflMQuxwhyua7N1GQxX wt8b040WQWrIY111Z71jwK0mgUdLe04EtQbEyIJ93qiUgf+MPc59Nh/1IWcOcAjn PL5qFn7srQ7kB9/djDLbvEtJA8UUVc7FJSeP0M0CAwEAAaOCAh8wggIbMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQUulKGmANyxQ219GiyhLqQSJJhmQUwHwYDVR0jBBgw FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y My5pLmxlbmNyLm9yZy8wJwYDVR0RBCAwHoILc29zbGVhZi5jb22CD3d3dy5zb3Ns ZWFmLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYE gfMA8QB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjpAagucA AAQDAEgwRgIhAIyDwmSdJcqWeZ7nMG3PBVPh0CmH+GlLZhAMPKWlJ5U9AiEAlHdA CKtXyElxwwDuXnOR5ZRmRpmhw4WQkugRaQCtK8MAdgA/F0tP1yJHWJQdZRyEvg0S 7ZA3fx+FauvBvyiF7PhkbgAAAY6QGoLvAAAEAwBHMEUCIQDaVqiCGx2dhSqOU1KR ex/3iavemZeElzf8SdXTrewmbgIgRp4GMA5sPqeb1ow10HcNlKpBALVgWeTQG9Jg 51+2YbMwDQYJKoZIhvcNAQELBQADggEBAKDO1SL/HC6WMazg7gc35uTZFvpZQMqE PZ7y7bnRXCPx0F2g6v5Huf6uIp4As3u556M+qFkKn/GsE1V/oJqmEvK+u+V6Vti4 5896tV1PAh13FO5xs/Y0WZGiscyX/IFBw41U2MWsQScY3+bjMCUTLrlW1Ckd1EvL JIjyuftUsHTigtVLi+B6Kj43h8pTpy/kg+5l1P1SiPOoEoRiCVouPkQLBPWcRROP aKsSBxxQMJbW7o7FqAEqxzmPvdxoglWmUWkY1dUh8oJRPgfqkEjmmLRrKq2ysbvH P2cZxAutq9qZQrrsfdqsK1LkWKoMGOsosTg5gSbi3ojQlvfvOzRI/wc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuVjovWmpV8cyIWoGxWri qb6z18sP+xfkNswdwNofWLpRVaZTVwFpUlj8sQB5nLaTdt8xsWiy3NOkHkflaaDg /Q01y3MLhrTn4pRC+LX2atm1ZntHM6rXAkHDQfmwzQxK5EPwCqGmh68/+qBm/3yw 3s4JHbG1sAw5aD1C3/Q6Tqxqenub1KtO5X1kIUwENUBJVi1PRqNvA3pWo3JK3pmM LMizo35sDuksi7Y3Cg9UBT3sLgciDy5vrNkoYZVRl6XB9FN+OS+WgJLDyzSUvf41 faVt8Hc11vI/ocDyanY716Bxujmi1yABUliJNyVarbmIzfFqT4MIJe5z4hhnp2PK 4CIK4UuZSwmGVsf0IyIbeCZVgFDrouAeL/pCX348r1sMDQymwUTXzagGf9Txp9gN xaEfktj8RpGbJ5RfdZjKvuS3d7QLEoUZHy88gklgJoPUx5+EqwpYgkTc5U3n+BY+ RNSvEbgH9masOs8rfIrWPt9K5XPMCnOfNK9i3yBzn7fTJwTF6YOo2HH3Ne8gyG1E BK6sYcFn9ZiVu5TkAgQzwPQ8tyvw8xflMQuxwhyua7N1GQxXwt8b040WQWrIY111 Z71jwK0mgUdLe04EtQbEyIJ93qiUgf+MPc59Nh/1IWcOcAjnPL5qFn7srQ7kB9/d jDLbvEtJA8UUVc7FJSeP0M0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 263962997117666638862012873910569748941696 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-30 15:04:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-28 15:03:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sosleaf.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 756151018390155582527543111968364964128752584614833485809356137297395411853347526356308249534933378312984499206797259920768123427022996318508027696698043500002823265794199690516630843295398304442560074251356291768072399542817177193810259900542299033139656197825917167363130682564909246368369520779303685450999017963469699990169918259151999921219848355686001340507885482072024042207738144539602690288323186484404601365295320199474823605191195846152365054944685455152190569473280548788602532867703782980301513741385542882495552032651926203898456195610828993862834205120028914533645105068901363329645105865897550130246391716802518125537897005262102463099762416019902810305465465019352347378997160775878789547153224836708306424723887845061807434094584877804255931619289916423451331630374888955716049418796169046876669278509573633698431974396355157918073148378781255563229267176145445633151093699784615596826332275696191957386669931927298656929333305267313965402723345004748528217491900980220705039423019800990180826023341301074014213909710838872104042861396196267536712263391991445967536967923488167761692958682424117307146436192363131946104655489551934387024106902134383499365836239437795232435427013071119209929891137131506307951481037 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ba5286980372c50db5f468b284ba904892619905 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sosleaf.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sosleaf.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e901a82e700000403004830460221008c83c2649d25ca96799ee7306dcf0553e1d02987f8694b66100c3ca5a527953d02210094774008ab57c84971c300ee5e7391e594664699a1c3859092e8116900ad2bc30076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018e901a82ef0000040300473045022100da56a8821b1d9d852a8e5352917b1ff789abde9997849737fc49d5d3adec266e0220469e06300e6c3ea79bd68c35d0770d94aa4100b56059e4d01bd260e75fb661b3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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