proofread.bible
Issued by R3
About this certificate
This digital certificate with serial number 03:c1:9e:2a:bb:3d:07:c5:77:ee:43:38:37:cc:3a:16:64:16 was issued on by Let's Encrypt.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=proofread.bible
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:c1:9e:2a:bb:3d:07:c5:77:ee:43:38:37:cc:3a:16:64:16Serial Number (int): 327221594508469857475026685140850213020694
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 46:85:58:a4:5a:40:02:26:c7:9a:ff:da:6c:c2:27:11:7a:5b:55:3e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c0:96:b9:b3:fe:6a:a0:31:f4:75:cd:de:76:1f:e1:84:96:42:3b:90
Fingerprint (sha256): 40:e1:42:27:3f:30:b0:b5:6c:b1:33:51:f6:54:b1:42:27:a0:17:3e:c7:de:35:0c:72:94:a6:fc:67:ac:f5:2b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate proofread.bible
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for proofread.bible
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cedarcounty.com
disastermastersplan.com
georgianationals.com
kidsmusicpromotion.com
proofread.bible
disastermastersplan.com
georgianationals.com
kidsmusicpromotion.com
proofread.bible
Other certificates including the domain name proofread.bible
(limited to 100 certificates)
Certificate
The complete raw certificate details for proofread.bible in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgISA8GeKrs9B8V37kM4N8w6FmQWMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTcwMDMzMzRaFw0yNDA3MTYwMDMzMzNaMBoxGDAWBgNVBAMT D3Byb29mcmVhZC5iaWJsZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ALgg1Vzd/2kzT+/FBpphfsXdFtZKM4GQFzOB0KK2wy6b7hjYVtEd3HhsUX9pPZUJ ln9cWYUGrSJYzImXEsMT70cDOGPJOq+LmIqXMr/JzDnzcFISguC6LlH5qEnnrlW2 ORb/wWOY2dLbE2FUwJ+NXYltsi++xo3TsS/WSRhmAWYEzflQd08rpjpQQrz/JyvH m4kw9h9hXTgQb7cdb/mptHecqmJlApEu7DRfT2cdqQ4KwvZ6QWVTEEb2JP9kfDrd R75WwFApv7fut2c05G/fU+DxdbY+Qyw0NDctoMg/KwEHB1xrP33cTpZ5LjWwI9uS a8Lag0GQq1SFpR6bn5l0ijkCAwEAAaOCAmcwggJjMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQURoVYpFpAAibHmv/abMInEXpbVT4wHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wcgYDVR0RBGswaYIPY2VkYXJjb3VudHkuY29tghdkaXNhc3Rlcm1hc3RlcnNw bGFuLmNvbYIUZ2VvcmdpYW5hdGlvbmFscy5jb22CFmtpZHNtdXNpY3Byb21vdGlv bi5jb22CD3Byb29mcmVhZC5iaWJsZTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQIG CisGAQQB1nkCBAIEgfMEgfAA7gB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7 v6s52IRzAAABjumwEzQAAAQDAEYwRAIgDFyMHgmmgVv85L/C577/0cZfaWQ4ch7A TJ1W3INkorwCIGwV4E3nZQVD8dhHdcB55aapqDdC2ZTd+ov5SZ9kIbXDAHUA3+FW 66oFr7WcD4ZxjajAMk6uVtlup/WlagHRwTu+UlwAAAGO6bAT9wAABAMARjBEAiBI KufTm4GDt6ftp6t5SOXoAKpa6sXlfvrltmoPhUDh8wIgbJpK6PZqHcy+hDHPuYJs S09HADqtBZl6ke9YgOAGO6AwDQYJKoZIhvcNAQELBQADggEBABGm7z6+9lpvRV15 FXHy14DsFGuER17KLp3ahDV3RSc3n6Wfd9Od/f5NW1gQhG40F0sRa3FVi4Qcn+7O ngTtaq+0FnxwRYaGEgzTozuFfSqoblBfVUTGyTdQwD1Umk1T1mcUruEtv4nfcXlH TlvoBeu57eoykLiJi+fS8lxQH944kBXRDPyhmw1qPTkZiu+7r/Z8XdxOfPd8vqbx X05BZj5OH3slpu1zB2Q6Se6zpXiIAdrkhsU+vBHA87hBB4P/sL3iOUt+4uiPbIYl 4l/lmDM6DX6K7d9ZZYPofZ58sOa+G4na2rB3wgVuEPXNtHjSbVpXmmZ4ZWldkCG0 JxrjM8w= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCDVXN3/aTNP78UGmmF+ xd0W1kozgZAXM4HQorbDLpvuGNhW0R3ceGxRf2k9lQmWf1xZhQatIljMiZcSwxPv RwM4Y8k6r4uYipcyv8nMOfNwUhKC4LouUfmoSeeuVbY5Fv/BY5jZ0tsTYVTAn41d iW2yL77GjdOxL9ZJGGYBZgTN+VB3TyumOlBCvP8nK8ebiTD2H2FdOBBvtx1v+am0 d5yqYmUCkS7sNF9PZx2pDgrC9npBZVMQRvYk/2R8Ot1HvlbAUCm/t+63ZzTkb99T 4PF1tj5DLDQ0Ny2gyD8rAQcHXGs/fdxOlnkuNbAj25JrwtqDQZCrVIWlHpufmXSK OQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 327221594508469857475026685140850213020694 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-17 00:33:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-16 00:33:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'proofread.bible' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23244038890545439446417960116379905211969933377707135131865763483384297800903559678310484697198212282118863871520977360359691500773675903681248634407617918277502151915433974294124957625102679636667625060556060414792707284610245816563515467367182121336480950764512787987501280221684279579358140003175545020266388869119793851161841242304916963496625034498224801863258084165942490831457435800951901170653730361215104758814649457734597238445961676754165916101831832539289146517654864555250068642233998991420786261861733149573698715177688924442383273692692218520104209100008492793233051525099916154328341828543733065615929 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 468558a45a400226c79affda6cc227117a5b553e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (107 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cedarcounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'disastermastersplan.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'georgianationals.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kidsmusicpromotion.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'proofread.bible' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ee9b01334000004030046304402200c5c8c1e09a6815bfce4bfc2e7beffd1c65f696438721ec04c9d56dc8364a2bc02206c15e04de7650543f1d84775c079e5a6a9a83742d994ddfa8bf9499f6421b5c3007500dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ee9b013f700000403004630440220482ae7d39b8183b7a7eda7ab7948e5e800aa5aeac5e57efae5b66a0f8540e1f302206c9a4ae8f66a1dccbe8431cfb9826c4b4f47003aad05997a91ef5880e0063ba0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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