mjnaz.church
Issued by R3
About this certificate
This digital certificate with serial number 03:8c:dc:20:ed:52:bf:e0:a1:f7:06:05:85:f9:d1:62:96:14 was issued on by Let's Encrypt.
With 13 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=mjnaz.church
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:8c:dc:20:ed:52:bf:e0:a1:f7:06:05:85:f9:d1:62:96:14Serial Number (int): 309268990290271448023999914248886728955412
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d5:bb:bd:bc:9b:5a:85:7f:c1:4f:9b:4f:71:dd:5e:6f:ad:53:d0:65
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 87:c3:7d:f3:78:ee:bd:51:14:af:29:71:d4:5c:0b:07:80:67:64:6b
Fingerprint (sha256): 44:9c:32:02:c3:c1:00:b2:4b:60:d1:3e:9c:6c:7f:04:42:90:7d:fe:80:a7:2f:e3:31:af:65:e1:f5:11:fa:7f
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate mjnaz.church
13
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mjnaz.church
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aonlinecasinos.com
bigdaddy.cafe.datataken.com
blockchainxyz.com
dcannabis.com
finland.biz
mjnaz.church
nomibo.net.productivitydeejay.com
rivercenters.com
sapiens.sapia.pe.yum-yums.com
sophosbrandingco.com
transfers.epik.support
tryarbitrage.com
us1tv.tel
bigdaddy.cafe.datataken.com
blockchainxyz.com
dcannabis.com
finland.biz
mjnaz.church
nomibo.net.productivitydeejay.com
rivercenters.com
sapiens.sapia.pe.yum-yums.com
sophosbrandingco.com
transfers.epik.support
tryarbitrage.com
us1tv.tel
Other certificates including the domain name mjnaz.church
(limited to 100 certificates)
Certificate
The complete raw certificate details for mjnaz.church in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6zCCBNOgAwIBAgISA4zcIO1Sv+Ch9wYFhfnRYpYUMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MTUxMzM4MDZaFw0yMzEyMTQxMzM4MDVaMBcxFTATBgNVBAMT DG1qbmF6LmNodXJjaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMrB 18m2Kpdi5OOUFLbcnkO1+ZvxeLnZ6AGtU0UguJKWHu/kV3Is2ceHKhqzFDWRkXpE qZ1LPs0gk6fkj+XQ/Q9N0/gba1kPv9AzqbIbR5uZ8nfUwb7WDpaQlaLb+Nghx/q9 Mz8ohBCgY3gJQc8wtlM/8IIXf65lG0YmA7d9IL3V9UiJYgeA3MZHdeelgsXjMCIL 96cUd7tV0RVX0y3rEdPmUafb2Tr6dhZZph8cBJQJwaHsMa52nrEZjUgmelq1VqhA DmQCiSzaje61+V403tenpX0Y0iiIx2sY42S0XFfGiBHF9W5pJxJNmPBS5yPxlQpn hcHUR6cRdJ5MO5ndZYMCAwEAAaOCAxQwggMQMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQU1bu9vJtahX/BT5tPcd1eb61T0GUwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w ggEaBgNVHREEggERMIIBDYISYW9ubGluZWNhc2lub3MuY29tghtiaWdkYWRkeS5j YWZlLmRhdGF0YWtlbi5jb22CEWJsb2NrY2hhaW54eXouY29tgg1kY2FubmFiaXMu Y29tggtmaW5sYW5kLmJpeoIMbWpuYXouY2h1cmNogiFub21pYm8ubmV0LnByb2R1 Y3Rpdml0eWRlZWpheS5jb22CEHJpdmVyY2VudGVycy5jb22CHXNhcGllbnMuc2Fw aWEucGUueXVtLXl1bXMuY29tghRzb3Bob3NicmFuZGluZ2NvLmNvbYIWdHJhbnNm ZXJzLmVwaWsuc3VwcG9ydIIQdHJ5YXJiaXRyYWdlLmNvbYIJdXMxdHYudGVsMBMG A1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYAejKM VNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGKmUcSGAAABAMARzBFAiBv qlS7x7m9QxpfMhtIlV6PxhBgJXv/oZxDhUpZYU/VhwIhAPzTnrAS+kzk+6qjOCL3 pSFpC48UaK1ghhgdWK0cx1msAHcArfe++nz/EMiLnT2cHj4YarRnKV3PsQwkyoWG NOvcgooAAAGKmUcSMQAABAMASDBGAiEApVxYbPfMBcM3PvKI5KUloKZOF13tBBl+ GOCOBLgO2csCIQCz6CtryayuaciqwZzA9IPsATLPCOWY1tLMG0KxoFfLrzANBgkq hkiG9w0BAQsFAAOCAQEAOSeSZrJJmoez27BPJNdSftDq3eu64YfQuCEQub+hf+uh c+eSTwfDiccIXel1rHfLwfZVNmfoxouAH6FaOdDWAvI2mr1AiCHQyoKkdlkekmHb eEhdCvr4unhZAVU5ffhS59k3w2AFc/T04dhhXaCyIXO8FpSfIbAcuu2Z/peeZUfU hFprNc3yx1m0vzQP/uZyoXelMDWJTFAjU2ribGfaGMYVQtoJ0oLz5F76Yj65nl4m /IdBJUZLWfXAYqRrmVN/Sbn4aHSkF1bLoCnntip5IvSSN/PlfsoZrfuqP0ufdYa+ /F5UiR3S8EgC+d+2HxFzfOhgnZFNQQiPtfAHsOYw9w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAysHXybYql2Lk45QUttye Q7X5m/F4udnoAa1TRSC4kpYe7+RXcizZx4cqGrMUNZGRekSpnUs+zSCTp+SP5dD9 D03T+BtrWQ+/0DOpshtHm5nyd9TBvtYOlpCVotv42CHH+r0zPyiEEKBjeAlBzzC2 Uz/wghd/rmUbRiYDt30gvdX1SIliB4Dcxkd156WCxeMwIgv3pxR3u1XRFVfTLesR 0+ZRp9vZOvp2FlmmHxwElAnBoewxrnaesRmNSCZ6WrVWqEAOZAKJLNqN7rX5XjTe 16elfRjSKIjHaxjjZLRcV8aIEcX1bmknEk2Y8FLnI/GVCmeFwdRHpxF0nkw7md1l gwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 309268990290271448023999914248886728955412 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-15 13:38:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-14 13:38:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mjnaz.church' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25595725110392097341670893442119893164578220826805222238655722742486191683394853887893622889197111983086255747578036628069932598420518215439485527535631099609958673968071821598522028042404993496610403780020145906620345324962310552402455549451000595905626985559383702894301469233955007617392036683328388448839358429311707512704709286106505310289741762209738013137630259891098838375842715263472045202694949301800387268790380757196713354211515188368563359617316331679269498528663102522683777291381449179304517541655992209489294420619911934218226682682884315566654829976898959276404302834794517551035908125432852967679363 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d5bbbdbc9b5a857fc14f9b4f71dd5e6fad53d065 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (273 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aonlinecasinos.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bigdaddy.cafe.datataken.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blockchainxyz.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dcannabis.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'finland.biz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mjnaz.church' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nomibo.net.productivitydeejay.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rivercenters.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sapiens.sapia.pe.yum-yums.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sophosbrandingco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'transfers.epik.support' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tryarbitrage.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'us1tv.tel' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018a99471218000004030047304502206faa54bbc7b9bd431a5f321b48955e8fc61060257bffa19c43854a59614fd587022100fcd39eb012fa4ce4fbaaa33822f7a521690b8f1468ad6086181d58ad1cc759ac007700adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a0000018a994712310000040300483046022100a55c586cf7cc05c3373ef288e4a525a0a64e175ded04197e18e08e04b80ed9cb022100b3e82b6bc9acae69c8aac19cc0f483ec0132cf08e598d6d2cc1b42b1a057cbaf . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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