mjnaz.church

Issued by R3

About this certificate

This digital certificate with serial number 03:8c:dc:20:ed:52:bf:e0:a1:f7:06:05:85:f9:d1:62:96:14 was issued on by Let's Encrypt.

With 13 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=mjnaz.church

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:8c:dc:20:ed:52:bf:e0:a1:f7:06:05:85:f9:d1:62:96:14
Serial Number (int): 309268990290271448023999914248886728955412
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: d5:bb:bd:bc:9b:5a:85:7f:c1:4f:9b:4f:71:dd:5e:6f:ad:53:d0:65
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 87:c3:7d:f3:78:ee:bd:51:14:af:29:71:d4:5c:0b:07:80:67:64:6b
Fingerprint (sha256): 44:9c:32:02:c3:c1:00:b2:4b:60:d1:3e:9c:6c:7f:04:42:90:7d:fe:80:a7:2f:e3:31:af:65:e1:f5:11:fa:7f

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate mjnaz.church

13

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for mjnaz.church

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

aonlinecasinos.com
bigdaddy.cafe.datataken.com
blockchainxyz.com
dcannabis.com
finland.biz
mjnaz.church
nomibo.net.productivitydeejay.com
rivercenters.com
sapiens.sapia.pe.yum-yums.com
sophosbrandingco.com
transfers.epik.support
tryarbitrage.com
us1tv.tel

Other certificates including the domain name mjnaz.church

(limited to 100 certificates)
diskjockeys.ca
kudzoo.media
lercusaward.org
lindelloffencefund.org
ssl-yybay.epik.to
sex-video.co.za
www.lifebeginsatconception.org
mjnaz.church
tvone.co.za
zatv.co.za
blazingfast.hacker.rehab
howtowinincourt.landbountifulministry.org
mjnaz.church
dermatologieundaesthetikamtegernsee.de

Certificate

The complete raw certificate details for mjnaz.church in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIF6zCCBNOgAwIBAgISA4zcIO1Sv+Ch9wYFhfnRYpYUMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yMzA5MTUxMzM4MDZaFw0yMzEyMTQxMzM4MDVaMBcxFTATBgNVBAMT
DG1qbmF6LmNodXJjaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMrB
18m2Kpdi5OOUFLbcnkO1+ZvxeLnZ6AGtU0UguJKWHu/kV3Is2ceHKhqzFDWRkXpE
qZ1LPs0gk6fkj+XQ/Q9N0/gba1kPv9AzqbIbR5uZ8nfUwb7WDpaQlaLb+Nghx/q9
Mz8ohBCgY3gJQc8wtlM/8IIXf65lG0YmA7d9IL3V9UiJYgeA3MZHdeelgsXjMCIL
96cUd7tV0RVX0y3rEdPmUafb2Tr6dhZZph8cBJQJwaHsMa52nrEZjUgmelq1VqhA
DmQCiSzaje61+V403tenpX0Y0iiIx2sY42S0XFfGiBHF9W5pJxJNmPBS5yPxlQpn
hcHUR6cRdJ5MO5ndZYMCAwEAAaOCAxQwggMQMA4GA1UdDwEB/wQEAwIFoDAdBgNV
HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E
FgQU1bu9vJtahX/BT5tPcd1eb61T0GUwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA
5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu
by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w
ggEaBgNVHREEggERMIIBDYISYW9ubGluZWNhc2lub3MuY29tghtiaWdkYWRkeS5j
YWZlLmRhdGF0YWtlbi5jb22CEWJsb2NrY2hhaW54eXouY29tgg1kY2FubmFiaXMu
Y29tggtmaW5sYW5kLmJpeoIMbWpuYXouY2h1cmNogiFub21pYm8ubmV0LnByb2R1
Y3Rpdml0eWRlZWpheS5jb22CEHJpdmVyY2VudGVycy5jb22CHXNhcGllbnMuc2Fw
aWEucGUueXVtLXl1bXMuY29tghRzb3Bob3NicmFuZGluZ2NvLmNvbYIWdHJhbnNm
ZXJzLmVwaWsuc3VwcG9ydIIQdHJ5YXJiaXRyYWdlLmNvbYIJdXMxdHYudGVsMBMG
A1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYAejKM
VNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGKmUcSGAAABAMARzBFAiBv
qlS7x7m9QxpfMhtIlV6PxhBgJXv/oZxDhUpZYU/VhwIhAPzTnrAS+kzk+6qjOCL3
pSFpC48UaK1ghhgdWK0cx1msAHcArfe++nz/EMiLnT2cHj4YarRnKV3PsQwkyoWG
NOvcgooAAAGKmUcSMQAABAMASDBGAiEApVxYbPfMBcM3PvKI5KUloKZOF13tBBl+
GOCOBLgO2csCIQCz6CtryayuaciqwZzA9IPsATLPCOWY1tLMG0KxoFfLrzANBgkq
hkiG9w0BAQsFAAOCAQEAOSeSZrJJmoez27BPJNdSftDq3eu64YfQuCEQub+hf+uh
c+eSTwfDiccIXel1rHfLwfZVNmfoxouAH6FaOdDWAvI2mr1AiCHQyoKkdlkekmHb
eEhdCvr4unhZAVU5ffhS59k3w2AFc/T04dhhXaCyIXO8FpSfIbAcuu2Z/peeZUfU
hFprNc3yx1m0vzQP/uZyoXelMDWJTFAjU2ribGfaGMYVQtoJ0oLz5F76Yj65nl4m
/IdBJUZLWfXAYqRrmVN/Sbn4aHSkF1bLoCnntip5IvSSN/PlfsoZrfuqP0ufdYa+
/F5UiR3S8EgC+d+2HxFzfOhgnZFNQQiPtfAHsOYw9w==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAysHXybYql2Lk45QUttye
Q7X5m/F4udnoAa1TRSC4kpYe7+RXcizZx4cqGrMUNZGRekSpnUs+zSCTp+SP5dD9
D03T+BtrWQ+/0DOpshtHm5nyd9TBvtYOlpCVotv42CHH+r0zPyiEEKBjeAlBzzC2
Uz/wghd/rmUbRiYDt30gvdX1SIliB4Dcxkd156WCxeMwIgv3pxR3u1XRFVfTLesR
0+ZRp9vZOvp2FlmmHxwElAnBoewxrnaesRmNSCZ6WrVWqEAOZAKJLNqN7rX5XjTe
16elfRjSKIjHaxjjZLRcV8aIEcX1bmknEk2Y8FLnI/GVCmeFwdRHpxF0nkw7md1l
gwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 309268990290271448023999914248886728955412
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-15 13:38:06 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-14 13:38:05 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mjnaz.church'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25595725110392097341670893442119893164578220826805222238655722742486191683394853887893622889197111983086255747578036628069932598420518215439485527535631099609958673968071821598522028042404993496610403780020145906620345324962310552402455549451000595905626985559383702894301469233955007617392036683328388448839358429311707512704709286106505310289741762209738013137630259891098838375842715263472045202694949301800387268790380757196713354211515188368563359617316331679269498528663102522683777291381449179304517541655992209489294420619911934218226682682884315566654829976898959276404302834794517551035908125432852967679363
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d5bbbdbc9b5a857fc14f9b4f71dd5e6fad53d065
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (273 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aonlinecasinos.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bigdaddy.cafe.datataken.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blockchainxyz.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dcannabis.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'finland.biz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mjnaz.church'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nomibo.net.productivitydeejay.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rivercenters.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sapiens.sapia.pe.yum-yums.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sophosbrandingco.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'transfers.epik.support'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tryarbitrage.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'us1tv.tel'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018a99471218000004030047304502206faa54bbc7b9bd431a5f321b48955e8fc61060257bffa19c43854a59614fd587022100fcd39eb012fa4ce4fbaaa33822f7a521690b8f1468ad6086181d58ad1cc759ac007700adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a0000018a994712310000040300483046022100a55c586cf7cc05c3373ef288e4a525a0a64e175ded04197e18e08e04b80ed9cb022100b3e82b6bc9acae69c8aac19cc0f483ec0132cf08e598d6d2cc1b42b1a057cbaf
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0039279266b2499a87b3dbb04f24d7527ed0eaddebbae187d0b82110b9bfa17feba173e7924f07c389c7085de975ac77cbc1f6553667e8c68b801fa15a39d0d602f2369abd408821d0ca82a476591e9261db78485d0afaf8ba78590155397df852e7d937c3600573f4f4e1d8615da0b22173bc16949f21b01cbaed99fe979e6547d4845a6b35cdf2c759b4bf340ffee672a177a53035894c5023536ae26c67da18c61542da09d282f3e45efa623eb99e5e26fc874125464b59f5c062a46b99537f49b9f86874a41756cba029e7b62a7922f49237f3e57eca19adfbaa3f4b9f7586befc5e54891dd2f04802f9dfb61f11737ce8609d914d41088fb5f007b0e630f7