proofread.bible

Issued by R3

About this certificate

This digital certificate with serial number 03:c1:9e:2a:bb:3d:07:c5:77:ee:43:38:37:cc:3a:16:64:16 was issued on by Let's Encrypt.

With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=proofread.bible

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 03:c1:9e:2a:bb:3d:07:c5:77:ee:43:38:37:cc:3a:16:64:16
Serial Number (int): 327221594508469857475026685140850213020694
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 46:85:58:a4:5a:40:02:26:c7:9a:ff:da:6c:c2:27:11:7a:5b:55:3e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): c0:96:b9:b3:fe:6a:a0:31:f4:75:cd:de:76:1f:e1:84:96:42:3b:90
Fingerprint (sha256): 40:e1:42:27:3f:30:b0:b5:6c:b1:33:51:f6:54:b1:42:27:a0:17:3e:c7:de:35:0c:72:94:a6:fc:67:ac:f5:2b

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate proofread.bible

5

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for proofread.bible

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

cedarcounty.com
disastermastersplan.com
georgianationals.com
kidsmusicpromotion.com
proofread.bible

Other certificates including the domain name proofread.bible

(limited to 100 certificates)
proofread.bible
ms.cosfacts.org.proofread.bible
tuna.vc
photo-studio.co.za
proofread.bible
proofread.bible
proofread.bible
twee.co.za
proofread.bible
proofread.bible
hasyapi.com.proofread.bible
proofread.bible
erin-gee.media

Certificate

The complete raw certificate details for proofread.bible in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFQTCCBCmgAwIBAgISA8GeKrs9B8V37kM4N8w6FmQWMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yNDA0MTcwMDMzMzRaFw0yNDA3MTYwMDMzMzNaMBoxGDAWBgNVBAMT
D3Byb29mcmVhZC5iaWJsZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ALgg1Vzd/2kzT+/FBpphfsXdFtZKM4GQFzOB0KK2wy6b7hjYVtEd3HhsUX9pPZUJ
ln9cWYUGrSJYzImXEsMT70cDOGPJOq+LmIqXMr/JzDnzcFISguC6LlH5qEnnrlW2
ORb/wWOY2dLbE2FUwJ+NXYltsi++xo3TsS/WSRhmAWYEzflQd08rpjpQQrz/JyvH
m4kw9h9hXTgQb7cdb/mptHecqmJlApEu7DRfT2cdqQ4KwvZ6QWVTEEb2JP9kfDrd
R75WwFApv7fut2c05G/fU+DxdbY+Qyw0NDctoMg/KwEHB1xrP33cTpZ5LjWwI9uS
a8Lag0GQq1SFpR6bn5l0ijkCAwEAAaOCAmcwggJjMA4GA1UdDwEB/wQEAwIFoDAd
BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV
HQ4EFgQURoVYpFpAAibHmv/abMInEXpbVT4wHwYDVR0jBBgwFoAUFC6zF7dYVsuu
UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v
cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y
Zy8wcgYDVR0RBGswaYIPY2VkYXJjb3VudHkuY29tghdkaXNhc3Rlcm1hc3RlcnNw
bGFuLmNvbYIUZ2VvcmdpYW5hdGlvbmFscy5jb22CFmtpZHNtdXNpY3Byb21vdGlv
bi5jb22CD3Byb29mcmVhZC5iaWJsZTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQIG
CisGAQQB1nkCBAIEgfMEgfAA7gB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7
v6s52IRzAAABjumwEzQAAAQDAEYwRAIgDFyMHgmmgVv85L/C577/0cZfaWQ4ch7A
TJ1W3INkorwCIGwV4E3nZQVD8dhHdcB55aapqDdC2ZTd+ov5SZ9kIbXDAHUA3+FW
66oFr7WcD4ZxjajAMk6uVtlup/WlagHRwTu+UlwAAAGO6bAT9wAABAMARjBEAiBI
KufTm4GDt6ftp6t5SOXoAKpa6sXlfvrltmoPhUDh8wIgbJpK6PZqHcy+hDHPuYJs
S09HADqtBZl6ke9YgOAGO6AwDQYJKoZIhvcNAQELBQADggEBABGm7z6+9lpvRV15
FXHy14DsFGuER17KLp3ahDV3RSc3n6Wfd9Od/f5NW1gQhG40F0sRa3FVi4Qcn+7O
ngTtaq+0FnxwRYaGEgzTozuFfSqoblBfVUTGyTdQwD1Umk1T1mcUruEtv4nfcXlH
TlvoBeu57eoykLiJi+fS8lxQH944kBXRDPyhmw1qPTkZiu+7r/Z8XdxOfPd8vqbx
X05BZj5OH3slpu1zB2Q6Se6zpXiIAdrkhsU+vBHA87hBB4P/sL3iOUt+4uiPbIYl
4l/lmDM6DX6K7d9ZZYPofZ58sOa+G4na2rB3wgVuEPXNtHjSbVpXmmZ4ZWldkCG0
JxrjM8w=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCDVXN3/aTNP78UGmmF+
xd0W1kozgZAXM4HQorbDLpvuGNhW0R3ceGxRf2k9lQmWf1xZhQatIljMiZcSwxPv
RwM4Y8k6r4uYipcyv8nMOfNwUhKC4LouUfmoSeeuVbY5Fv/BY5jZ0tsTYVTAn41d
iW2yL77GjdOxL9ZJGGYBZgTN+VB3TyumOlBCvP8nK8ebiTD2H2FdOBBvtx1v+am0
d5yqYmUCkS7sNF9PZx2pDgrC9npBZVMQRvYk/2R8Ot1HvlbAUCm/t+63ZzTkb99T
4PF1tj5DLDQ0Ny2gyD8rAQcHXGs/fdxOlnkuNbAj25JrwtqDQZCrVIWlHpufmXSK
OQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 327221594508469857475026685140850213020694
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-17 00:33:34 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-16 00:33:33 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'proofread.bible'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23244038890545439446417960116379905211969933377707135131865763483384297800903559678310484697198212282118863871520977360359691500773675903681248634407617918277502151915433974294124957625102679636667625060556060414792707284610245816563515467367182121336480950764512787987501280221684279579358140003175545020266388869119793851161841242304916963496625034498224801863258084165942490831457435800951901170653730361215104758814649457734597238445961676754165916101831832539289146517654864555250068642233998991420786261861733149573698715177688924442383273692692218520104209100008492793233051525099916154328341828543733065615929
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							468558a45a400226c79affda6cc227117a5b553e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (107 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cedarcounty.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'disastermastersplan.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'georgianationals.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kidsmusicpromotion.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'proofread.bible'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ee9b01334000004030046304402200c5c8c1e09a6815bfce4bfc2e7beffd1c65f696438721ec04c9d56dc8364a2bc02206c15e04de7650543f1d84775c079e5a6a9a83742d994ddfa8bf9499f6421b5c3007500dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ee9b013f700000403004630440220482ae7d39b8183b7a7eda7ab7948e5e800aa5aeac5e57efae5b66a0f8540e1f302206c9a4ae8f66a1dccbe8431cfb9826c4b4f47003aad05997a91ef5880e0063ba0
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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