americanfamilyvaluespac.org

Issued by R3

About this certificate

This digital certificate with serial number 04:7f:87:02:73:a9:c5:2c:ec:a0:a5:04:83:0b:45:8b:24:02 was issued on by Let's Encrypt.

With 20 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=americanfamilyvaluespac.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 04:7f:87:02:73:a9:c5:2c:ec:a0:a5:04:83:0b:45:8b:24:02
Serial Number (int): 391844462835952538900806943779591409050626
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 23:f5:c5:03:2d:e8:8d:26:af:b6:57:fa:21:7f:1a:91:21:30:29:00
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 60:ea:24:5b:d7:b3:2e:d5:63:b4:ac:30:11:e3:dd:ab:0b:a6:b3:9b
Fingerprint (sha256): 31:83:56:75:47:4e:29:0c:28:ad:60:8f:63:c2:e2:79:df:57:8f:32:a2:77:fd:61:43:a6:ab:9c:eb:ac:cd:c2

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate americanfamilyvaluespac.org

20

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for americanfamilyvaluespac.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

americanfamilyvaluespac.org
americasaude.com
barcelona4vip.com
clayclarktowergardenbiz.com
edventurekids.com
eyemiles.com
getridofbamboo.net
howtocheckforbreastcancer.com
ncmeetings.statenationals.us
neshkoro.com
nextdoor.charlottefirewood.com
okpues.net
patrickafb.com
perfectdomainlander.com
planetservices.com
scientificmedicine.com
sellyourhomeforonedollar.com
sikhmatrimony.in
thesmileshackva.com
www.stronginstall.com.stronginstall.com

Other certificates including the domain name americanfamilyvaluespac.org

(limited to 100 certificates)
americanfamilyvaluespac.org
americanfamilyvaluespac.org
timehascome.ca
pokerx.in.endabortion123.org
arbitrageur.vc
americanfamilyvaluespac.org
americanfamilyvaluespac.org
americanfamilyvaluespac.org
americanfamilyvaluespac.org

Certificate

The complete raw certificate details for americanfamilyvaluespac.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtRGy6nO7H/S5geHPLTC6
KxJS5xg3wjLo/ecKxLDaxFGHILV4VQ11roqxjcqoVL53HR7AI4740ge8iK1QNfHm
uJzg02Sno8WMo3FH+BRr3CNcuW309mVIuOT68BKKHCReB9EmG3IYdjJ8vTclF5mn
ZE3bcRUlu7BShCKdQfNWnJb28qz81jt6nVorWmQHGY6wH80m1n8UZ3vGZm0l8wd3
xdVZQ478pX6kevdUb9Iyk1iLl0MsFyexFrF+A1EmNrR8Ff9cVrlhVXWkKhWU1YNi
meSWpbG5ClQiSRbGEivhRipmJMiGjvjulq1MAZhT63teMti8ZPNIptdB6p05s1Es
hwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 391844462835952538900806943779591409050626
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-16 15:36:15 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-15 15:36:14 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'americanfamilyvaluespac.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22857860846777187113270420182505686981374202644743018451815177686875238131909898712160593921359892566595966595102392882921308186667652545033437089903903513026728185786974828250064174750923973581679757261082917839032247935363254050340122546806246254192618421535012994582213872169151307934455381051620568709011339715523092256224151740119633633872190988559394525969961355842571940922954549222156823930240777369486546251398822834264608206674354509599712690126413343696486316667673254268176346831217751481577409892741122221723405033174228661353010147215532873315666056938984497508903134291459619091185111367155907610881159
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							23f5c5032de88d26afb657fa217f1a9121302900
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (466 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'americanfamilyvaluespac.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'americasaude.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'barcelona4vip.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clayclarktowergardenbiz.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'edventurekids.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eyemiles.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'getridofbamboo.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'howtocheckforbreastcancer.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ncmeetings.statenationals.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'neshkoro.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nextdoor.charlottefirewood.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'okpues.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'patrickafb.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'perfectdomainlander.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'planetservices.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'scientificmedicine.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sellyourhomeforonedollar.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sikhmatrimony.in'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thesmileshackva.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.stronginstall.com.stronginstall.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10077003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018ee7c4262b0000040300483046022100f76253c30210189f08a2d0ebbf16519ed1599f5cef3e01b7a3cf0822e87058ce022100e1b64e6f8621e96f593057dc5bc3ea6d0215f230e086c473b727e4a375298a90007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ee7c426f3000004030047304502204eaa94149adb8e88ce3087bc847b712b978aa65950b8202573ae3e054b90df5a022100b30d25aa6bc90d3384e7286259e347109817c7da9819885c24fb2343e106a7d6
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		006b86e91a598a3aa17606f2ef5028bfb0e9a76afaf0ef6f88ad0f51502fed6c845cd0b4ac3a622e3a5f2f18dc8a8f0acda939299db9362a6716391ec587f12f45601c463a7b7d427885bb6b06ebafb07122a69e675f2fcf51d119bf125dbdf0d0ac2c77250608a762ea4aa67098c8ab60d36fff9fd5bd10e10bb5e5d2bd4186d3b201d88f181a47675f8b5f7e515fa8dbf07a55c0016e81b2707dfd51851f479bd860f104166ba74b2d9d139b5c49387a7643014e3c120985fde28891b57f6f50ad703a8a1967b23dfcdf23eccd12f29f08f507d6bc276da3514fa738fbd7eb8bf72cab543656c8ad2e6a7a4b4e022f5d5a9790d82d9d36f9b63cffcd467c0c53