roofmaxxocala.com
Issued by R3
About this certificate
This digital certificate with serial number 04:65:24:1c:7b:b1:eb:aa:54:91:65:c9:6a:c8:3b:3e:24:bc was issued on by Let's Encrypt.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=roofmaxxocala.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:65:24:1c:7b:b1:eb:aa:54:91:65:c9:6a:c8:3b:3e:24:bcSerial Number (int): 382865662887048768251133066709100211872956
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 85:46:95:62:b4:a8:92:4f:54:0a:c2:2d:23:04:f8:6c:ff:e4:90:c1
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 19:7d:b7:f8:76:f9:24:9c:88:1e:24:4b:ce:be:f9:8b:95:15:c7:09
Fingerprint (sha256): 29:be:d0:cb:d6:46:ea:f5:53:89:59:15:e6:fd:56:2c:f5:4e:84:63:3a:b6:19:d4:93:13:4c:1e:90:1e:53:bb
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate roofmaxxocala.com
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for roofmaxxocala.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
alcalinic.com
particlebeam.com
rockchalkclassic.com
roofmaxxocala.com
rxsugarcerealprococoacrunch.com
verifyyouremail.com
particlebeam.com
rockchalkclassic.com
roofmaxxocala.com
rxsugarcerealprococoacrunch.com
verifyyouremail.com
Other certificates including the domain name roofmaxxocala.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for roofmaxxocala.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgISBGUkHHux66pUkWXJasg7PiS8MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTQwNTUxMDJaFw0yNDA3MTMwNTUxMDFaMBwxGjAYBgNVBAMT EXJvb2ZtYXh4b2NhbGEuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn/ePDdrC91F4NzIzYyXyW+6SSxXUpy4g2DLUT8Ojd8oHESSh9qv8GB9vftr1 E9QameCBhFEB8+X9H+YhGbxOYTHlDrgH+VekZlsyALPhN7l80di4oSLgQI8ajKdK XKNF3CoAgbMoGjBvtQerGWOKA6oXr34MffmgNV7yIhUDN0XXCMWCtIQSashIBzNK yCAJluIx9vktYRdAxFPOQxuQsDBSKJBuMYFZtTmDFl5oB4K/Gsk2zUV+RAyCN3zS BY/iYSKJ4sd9pK1dpxcef+FZwTnk1Mqooj2lxgjWXQW89VxLWHkCzKJcxQVbrVfq BVUnBPiBI9b1/v8UxDEVx05BTwIDAQABo4ICgjCCAn4wDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0G A1UdDgQWBBSFRpVitKiST1QKwi0jBPhs/+SQwTAfBgNVHSMEGDAWgBQULrMXt1hW y65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6 Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iu b3JnLzCBiwYDVR0RBIGDMIGAgg1hbGNhbGluaWMuY29tghBwYXJ0aWNsZWJlYW0u Y29tghRyb2NrY2hhbGtjbGFzc2ljLmNvbYIRcm9vZm1heHhvY2FsYS5jb22CH3J4 c3VnYXJjZXJlYWxwcm9jb2NvYWNydW5jaC5jb22CE3ZlcmlmeXlvdXJlbWFpbC5j b20wEwYDVR0gBAwwCjAIBgZngQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8A dQDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAY7bX6apAAAEAwBG MEQCID5Dwbd0D5H36yWfheDz/MdGDDR3ewZKpGvU3mkf3Q9iAiB/UxwPaeuPPHYf pTuqGWHMbnmy8BVkuvi6+4Y8wIEnVAB2ABmYEHEJ8NZSLjCA0p4/ZLuDbijM+Q9S ju7fzko/FrTKAAABjttfpwMAAAQDAEcwRQIhAKwaYfq15kLijgA72AqD8EKBMhfF 11qyH8QrjLIihRDeAiAKjgVYa2JB3kytwoEwtPTOwsCYPEA5TVzuoaGFHx0pGTAN BgkqhkiG9w0BAQsFAAOCAQEALiquFmrkYTY9Vj1GvExdTs1JlQPSmu/L/6TZxAD/ 3TYqAHgm1RKDZ6N2kHW3AjMrptDqjY1NgTtGX3I64SrRnfPp3dlvBLStlkIfQzAj Nzkm7gICjjvvKyWlD7D2H1TI7yXxsTi09Tca2UkULxG18H/8ZnkhjK1vT69P0ES+ v7JOkS9HKp3+wNFJxlXBIjWlN6RO1P/HjMZrACkm8VxafCpzu34+JrN94T7qrMef OoZVTxb8+l04caV4ALTqCfnea1dELbK5H9qNFABEqK1lk82d0Kd1i2K16c6FafGl Hbz870bKtqFDuoKUybQHgOlGnxnltfiE/NdkXK8T0SWAVQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/ePDdrC91F4NzIzYyXy W+6SSxXUpy4g2DLUT8Ojd8oHESSh9qv8GB9vftr1E9QameCBhFEB8+X9H+YhGbxO YTHlDrgH+VekZlsyALPhN7l80di4oSLgQI8ajKdKXKNF3CoAgbMoGjBvtQerGWOK A6oXr34MffmgNV7yIhUDN0XXCMWCtIQSashIBzNKyCAJluIx9vktYRdAxFPOQxuQ sDBSKJBuMYFZtTmDFl5oB4K/Gsk2zUV+RAyCN3zSBY/iYSKJ4sd9pK1dpxcef+FZ wTnk1Mqooj2lxgjWXQW89VxLWHkCzKJcxQVbrVfqBVUnBPiBI9b1/v8UxDEVx05B TwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 382865662887048768251133066709100211872956 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-14 05:51:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-13 05:51:01 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'roofmaxxocala.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20193966286251743325491683558509958445567832369794276932269466371828708607262863819565555551291357795301111022214952063193174968886854812992267106877666698299056897659715214087650032268433128064125216607822474898096753131643443381166093560479811756274037197493306675773520152622630718444489389470886979692921530143676850596345831239522227835601166726240091772444703983811109253001465699318885282780822688097273214931179778728590214086853554610207245243051430368818338911576189018784883307322130241306104150535251519373182631508674649543081367719105870913347057828200871009792371885521850237371576631044949520006660431 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 85469562b4a8924f540ac22d2304f86cffe490c1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (131 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alcalinic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'particlebeam.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rockchalkclassic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'roofmaxxocala.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rxsugarcerealprococoacrunch.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'verifyyouremail.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018edb5fa6a9000004030046304402203e43c1b7740f91f7eb259f85e0f3fcc7460c34777b064aa46bd4de691fdd0f6202207f531c0f69eb8f3c761fa53baa1961cc6e79b2f01564baf8bafb863cc08127540076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018edb5fa7030000040300473045022100ac1a61fab5e642e28e003bd80a83f042813217c5d75ab21fc42b8cb2228510de02200a8e05586b6241de4cadc28130b4f4cec2c0983c40394d5ceea1a1851f1d2919 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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