kidsafety.com
Issued by R3
About this certificate
This digital certificate with serial number 04:14:5b:c3:3d:54:ca:d0:0d:9a:3a:d2:60:24:67:83:a8:e5 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=kidsafety.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:14:5b:c3:3d:54:ca:d0:0d:9a:3a:d2:60:24:67:83:a8:e5Serial Number (int): 355376764554908516458325193233991926524133
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: d7:55:4a:e7:33:39:41:5a:1e:26:29:04:33:a9:36:52:7d:a5:88:fe
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f0:79:9e:0b:8e:18:57:25:35:aa:81:7d:47:32:48:99:7f:98:16:a8
Fingerprint (sha256): 30:68:09:46:2b:76:eb:b2:82:e7:67:8c:cd:9a:0e:81:9c:32:98:68:2c:db:a6:d7:19:f4:96:ac:0c:b4:2e:e2
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate kidsafety.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kidsafety.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kidsafety.com
www.kidsafety.com
www.kidsafety.com
Other certificates including the domain name kidsafety.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for kidsafety.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgISBBRbwz1UytANmjrSYCRng6jlMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDkxNzEwMDBaFw0yNDA3MDgxNzA5NTlaMBgxFjAUBgNVBAMT DWtpZHNhZmV0eS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDG lT3JPRVuWorSApTCeKbMu51qjlvt2yKwe0odZHb/bXGRimBfQKG3/XcR/KAZw5qs jDzT1zbdJDkmiTjNhHxG8lXvv/kAVYA+XoePEzWAD8K0j4VPIS3LR7AYw8wQM/Bo fuvizkQj8abkp8RCdaB6lU7TFZO62kbdkRaAZQzTMoEwmnX63+awpiY2opf31o5b gv6I30R/9EvJhx7cHQpV3c4G8xQHJvI7fA9mpbDbWOhQ3sGs5pkeur5BBZ95JDdQ PZb3kElH66lR/FIDSotg1lA17jUr6z+NbqVse7iy9TVqXq+aQr/ewrTdOfD6z7N/ x3GLkjLBT3wRT5k77yX9m3dEDZgmzrt0k/Ygdx1oaiJ4cmHjqoA1YYlXyRDUSGtE sgy34pmtyucVBZmvdrIQioiCJyMt3Vx87cipbTKYUip4eD2pNBFLk+vQnAbE8IcC 6GJ1PaVBtxlLHVMgSl8dzV+HmtA2gy45XPF+V/mJTL4QLExcxngTSblw1nQf86Pl UcCTpAPEQqKr5gb187/qAA/JlkEWwYafPWi1vCsbOKyU6zX9pCYlzBgNTtSZEQEa Yqok+Jh4CmpQeY+OVvfmgpUWphumX43r4v9IUmdhY/GVqLXuO8OJ5zScqF7G49Aw 2Pizb7DBCOGFlYIEY3U5o+V/jMKkKKJwwCWOXkyz9wIDAQABo4ICIjCCAh4wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNV HRMBAf8EAjAAMB0GA1UdDgQWBBTXVUrnMzlBWh4mKQQzqTZSfaWI/jAfBgNVHSME GDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYB BQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDov L3IzLmkubGVuY3Iub3JnLzArBgNVHREEJDAigg1raWRzYWZldHkuY29tghF3d3cu a2lkc2FmZXR5LmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkC BAIEgfUEgfIA8AB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAAB jsQNd6sAAAQDAEYwRAIgH57eIXqLCqqDLKfrSsfG3Pm8ffHRUxLhruuFYlE4XoEC IDo2R/3iQOtiFPysJv9VQC7A0qiLVNQWzGzLiuxhX5ydAHcA3+FW66oFr7WcD4Zx jajAMk6uVtlup/WlagHRwTu+UlwAAAGOxA14gwAABAMASDBGAiEAssPe8L2NR8ws WkfbA2gXeUJZuGIvG64jy+9VP1/H4VICIQDXsDNKaWm14L4G1E3yYbCnS23Juv6T bbNUF6pEFPpfGjANBgkqhkiG9w0BAQsFAAOCAQEArKE5mE8JvRK/jllZhnQYg9sk EzBw7DNoxe8BRtrWZVwnj9/VP7MDdUCVi2MB1MYwapOKBPTR1jWeXkIXHEgtU+6c hlRPqw9JcAtg5A3uqe0o/cL8ZKXBU/Wa9PoRnwkHzDdNAG4EjYN3uHN8nr9vt4Pt ZI/JrzI/2dkJYmm3vmPlhP9+0KWvDLs4xcKcNYcqw4wzb06LgX32K1kh+i3SExz6 FzI7DOprTDAYaIROl1DW26+bTnMHHK0eRx1IC6Ei38OXi6mhOaOJRe8ML77yz0UP 0OqbYPuG0b2yKTFh780yyfS3erSyNiSB0rHmvPU8Ur3FcawyuwOhMaVMtddVCg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxpU9yT0VblqK0gKUwnim zLudao5b7dsisHtKHWR2/21xkYpgX0Cht/13EfygGcOarIw809c23SQ5Jok4zYR8 RvJV77/5AFWAPl6HjxM1gA/CtI+FTyEty0ewGMPMEDPwaH7r4s5EI/Gm5KfEQnWg epVO0xWTutpG3ZEWgGUM0zKBMJp1+t/msKYmNqKX99aOW4L+iN9Ef/RLyYce3B0K Vd3OBvMUBybyO3wPZqWw21joUN7BrOaZHrq+QQWfeSQ3UD2W95BJR+upUfxSA0qL YNZQNe41K+s/jW6lbHu4svU1al6vmkK/3sK03Tnw+s+zf8dxi5IywU98EU+ZO+8l /Zt3RA2YJs67dJP2IHcdaGoieHJh46qANWGJV8kQ1EhrRLIMt+KZrcrnFQWZr3ay EIqIgicjLd1cfO3IqW0ymFIqeHg9qTQRS5Pr0JwGxPCHAuhidT2lQbcZSx1TIEpf Hc1fh5rQNoMuOVzxflf5iUy+ECxMXMZ4E0m5cNZ0H/Oj5VHAk6QDxEKiq+YG9fO/ 6gAPyZZBFsGGnz1otbwrGzislOs1/aQmJcwYDU7UmREBGmKqJPiYeApqUHmPjlb3 5oKVFqYbpl+N6+L/SFJnYWPxlai17jvDiec0nKhexuPQMNj4s2+wwQjhhZWCBGN1 OaPlf4zCpCiicMAljl5Ms/cCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 355376764554908516458325193233991926524133 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-09 17:10:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-08 17:09:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kidsafety.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 810147852014909491254540922944050501861958464908849786608237005089835475451852532258420368945728547149155597325273265438666664943624622847099367831491195413138298529647007852176597891162486697347556393526960563515234342948040697911083554231761895129375122255083053164107837368336782723054144596609506962001729092600284907398576055715053347872744187239526361862922263555203111413507367999670903236952760056260259077199395013408992894068457092049221977402517977036260417516480682245770499347783404831362172398790289446944134403866227252614395025041747003869674971359372860733063666554600803194531415103032652291782976981207589992460524511850722927190725254656790230370654833806381309421171914227321721670683177569920356208673408760295743609789222695499946156861941628702497413581669239432133324357786814064397685563195397046431990483849638344556547618946377538753915103454593438685773123259410160678268287525565522706869026246134271536771541044147242543167858856444303784409686166353925800426827358072551233021259937340401170198246552054761451888542582140804686484807571305894838859485037135944997388764447638766367109894277507490536160486101797711642941275712032311852319299492535472140852700705085629259192122859087654647303301280759 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d7554ae73339415a1e26290433a936527da588fe . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kidsafety.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kidsafety.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ec40d77ab000004030046304402201f9ede217a8b0aaa832ca7eb4ac7c6dcf9bc7df1d15312e1aeeb856251385e8102203a3647fde240eb6214fcac26ff55402ec0d2a88b54d416cc6ccb8aec615f9c9d007700dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ec40d78830000040300483046022100b2c3def0bd8d47cc2c5a47db036817794259b8622f1bae23cbef553f5fc7e152022100d7b0334a6969b5e0be06d44df261b0a74b6dc9bafe936db35417aa4414fa5f1a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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