saintflanaganfilm.org
Issued by R3
About this certificate
This digital certificate with serial number 04:6e:65:99:86:3d:a1:13:47:0e:55:e1:e8:8c:4b:c2:bf:4e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=saintflanaganfilm.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:6e:65:99:86:3d:a1:13:47:0e:55:e1:e8:8c:4b:c2:bf:4eSerial Number (int): 386015253260063505093675488326637691518798
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a5:39:35:c7:5f:8a:48:b9:8c:3a:20:38:c1:2e:2c:6b:2b:eb:d1:5b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ef:e4:b4:77:30:df:1f:56:e2:93:91:79:0b:3f:26:0f:ad:bb:29:57
Fingerprint (sha256): 33:f9:71:fe:6a:bd:96:d9:28:de:e7:1d:4b:f4:d4:00:b5:c4:a4:c8:87:1a:50:9d:ec:98:10:a8:0c:dc:04:f1
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate saintflanaganfilm.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for saintflanaganfilm.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
saintflanaganfilm.org
Other certificates including the domain name saintflanaganfilm.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for saintflanaganfilm.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgISBG5lmYY9oRNHDlXh6IxLwr9OMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMTIyMzI2NDFaFw0yNDA2MTAyMzI2NDBaMCAxHjAcBgNVBAMT FXNhaW50ZmxhbmFnYW5maWxtLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAMVvmdr2+Pt60Upxah6CD5j13O+LuOIcyR8fh4jG4nYGx4Gev4TY+1yD mSuNfnPI/b4FC054VB0lmQlYZEPG0LCy3XLj08y7KNzlbOu9fcOg7EZJ+Mm1DkTk wCUoZCIuM43rLPAfyGZ8AjJ2utYUlR6vzOUBAh1rwDyTgXKOO6i1P9dsL8GWGs1D 3ZRxkrHuOiAsMmWJl7mcMY2Enb7Q4eMUvEZakar3Pn9SAJt/bEDidpm41Co3vXAV Z2VfzjInTfW8OcfwuksJc/vJXjnw9mZKLE3d9Q+500Ca6ejb+D3vKq2WjJGTjGse xVgUa0Yb+eNG9nbln3Uosr+N/vvIrD0CAwEAAaOCAhUwggIRMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIw ADAdBgNVHQ4EFgQUpTk1x1+KSLmMOiA4wS4sayvr0VswHwYDVR0jBBgwFoAUFC6z F7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVo dHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxl bmNyLm9yZy8wIAYDVR0RBBkwF4IVc2FpbnRmbGFuYWdhbmZpbG0ub3JnMBMGA1Ud IAQMMAowCAYGZ4EMAQIBMIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADuAHUAO1N3dT4t uYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGONTRFhwAABAMARjBEAiA4Dj+i nzokGdH0Aa7EpYw3rjzLXKlXU7a20C+tR5ewyQIgaTw1yZq/x/6MtXudvyME4pSx qeeBPYgBRl2eoq8BrUYAdQDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1 mwAAAY41NEd3AAAEAwBGMEQCIDvQGEty4Qgkujrsl5EWq1hjKlaieZrnebNywpyY HTT6AiABMraA0tEdnCgK6ycb93tb8zhe/fVWrDep9paO2yfh/jANBgkqhkiG9w0B AQsFAAOCAQEAcwjoNbliECnmxBWxdAnggKpLr7SFuL0SYgjbjxArxaqjSiZlYWDc 66pu3WMqvNgZokXFwUh8f7wQRwMVu+3fmYDdhhUE/g5AqokmQU0M1I8txE9jgA9e JGgh5pgdZj9w37S0J2p/4vqVFSrH8p7GDaY1tB7G+y9D7OpbuIGlBawlS0sd+pK1 1uK11wUIECxm12O+R+ZHjH3XDq5t3RvzrQAii7tV4e2mmuTRWEsECgHEUFUZX7Za yAAv2ycZ/49uxKt4n+TSe1vtUOyvSzwtnGVnj4A1lOB3vzjpXAmGzn3kck4b+oSf WWz7K+JIhSe0UAvlEMNLU+HTnxhIc4Sfjg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxW+Z2vb4+3rRSnFqHoIP mPXc74u44hzJHx+HiMbidgbHgZ6/hNj7XIOZK41+c8j9vgULTnhUHSWZCVhkQ8bQ sLLdcuPTzLso3OVs6719w6DsRkn4ybUOROTAJShkIi4zjess8B/IZnwCMna61hSV Hq/M5QECHWvAPJOBco47qLU/12wvwZYazUPdlHGSse46ICwyZYmXuZwxjYSdvtDh 4xS8RlqRqvc+f1IAm39sQOJ2mbjUKje9cBVnZV/OMidN9bw5x/C6Swlz+8leOfD2 ZkosTd31D7nTQJrp6Nv4Pe8qrZaMkZOMax7FWBRrRhv540b2duWfdSiyv43++8is PQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 386015253260063505093675488326637691518798 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-12 23:26:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-10 23:26:40 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'saintflanaganfilm.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24923978581214416562095604752347805677472076188837796563441805828330568006813232724789594793960252677363648834593798534841879362006677441955432940616408315232968054278925051520594453047626602674998171490019124748343544736814296112927038392430010663116058329296714855740855278088107063638674924423078437180268513313964696961188416007742269399394496690243507984682811951568651803680758806587614323136731955634432095324195198084667248332578435696580702494918962670975201327162736788861772357268343625051806670918918405788739966835670617082233972905819990485989172146441599241225385038029290530955309690373195144404446269 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a53935c75f8a48b98c3a2038c12e2c6b2bebd15b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saintflanaganfilm.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e3534458700000403004630440220380e3fa29f3a2419d1f401aec4a58c37ae3ccb5ca95753b6b6d02fad4797b0c90220693c35c99abfc7fe8cb57b9dbf2304e294b1a9e7813d8801465d9ea2af01ad46007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e35344777000004030046304402203bd0184b72e10824ba3aec979116ab58632a56a2799ae779b372c29c981d34fa02200132b680d2d11d9c280aeb271bf77b5bf3385efdf556ac37a9f6968edb27e1fe . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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