affirmingdignity.org
Issued by R3
About this certificate
This digital certificate with serial number 04:d8:26:ab:3e:56:fe:fd:ce:84:d9:88:1d:38:3f:9a:24:2c was issued on by Let's Encrypt.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=affirmingdignity.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:d8:26:ab:3e:56:fe:fd:ce:84:d9:88:1d:38:3f:9a:24:2cSerial Number (int): 422001534792968264381894760564474246734892
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 4c:a7:6d:d3:78:68:41:94:0b:e2:e3:ec:b9:b3:88:bf:a0:59:96:6f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 9b:8b:a0:c9:e5:33:70:b4:e2:7d:d4:dd:28:ed:79:94:fe:c5:6d:da
Fingerprint (sha256): 49:ec:d4:7c:50:e4:fe:32:cd:96:07:d6:18:40:f7:7b:15:25:4d:23:e8:63:ee:52:34:01:07:c9:de:a9:ac:f4
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate affirmingdignity.org
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for affirmingdignity.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aasana.com
affirmingdignity.org
ecommercecorp.com
handymanportsmouth.com
mayerresearch.com
petcit.net
pouttext.com
shaadidating.in
www.codgamedevclub.xyz
affirmingdignity.org
ecommercecorp.com
handymanportsmouth.com
mayerresearch.com
petcit.net
pouttext.com
shaadidating.in
www.codgamedevclub.xyz
Other certificates including the domain name affirmingdignity.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for affirmingdignity.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgISBNgmqz5W/v3OhNmIHTg/miQsMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMDkwODQxMTlaFw0yNDA1MDkwODQxMThaMB8xHTAbBgNVBAMT FGFmZmlybWluZ2RpZ25pdHkub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEA0W8a7z/ug9zS7VS3MUVv7B7NfhWAW7ZEH9B4p5ni6JexuPLpppm/Uy3M LAreqT6mi4EbxxTNrAcsCdhszBasMc66QMZOe1Yzhdj0U9pk5o1JUzyzYP3Y5jr+ oS7B4gWKA/Nnhin96Xtje6rJaWVXom7y+vP3dWqxjKAvLW2SdXDnBI4qzo1dssIW 8tROCWRz1uBOWw+aBPjybtHEjolg3un+wV3ou/NVQ3XIhC65nI9cPR1qB+DusPW0 fIHoLDyti/upihGITIrOJm7gZxVp+R+mi/AaUZmjbSYfhVoFV/I4cg3WNpDmXX5B 5GQyF1nAfzJR9vZQPXV9FPSWjo3qwwIDAQABo4ICpTCCAqEwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBRMp23TeGhBlAvi4+y5s4i/oFmWbzAfBgNVHSMEGDAWgBQULrMX t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0 dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu Y3Iub3JnLzCBrgYDVR0RBIGmMIGjggphYXNhbmEuY29tghRhZmZpcm1pbmdkaWdu aXR5Lm9yZ4IRZWNvbW1lcmNlY29ycC5jb22CFmhhbmR5bWFucG9ydHNtb3V0aC5j b22CEW1heWVycmVzZWFyY2guY29tggpwZXRjaXQubmV0ggxwb3V0dGV4dC5jb22C D3NoYWFkaWRhdGluZy5pboIWd3d3LmNvZGdhbWVkZXZjbHViLnh5ejATBgNVHSAE DDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AKLiv9Ye3i8v B6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfYAAABjY0+MFQAAAQDAEYwRAIgZLfmaoGs EyRyAITNKmi5DQJIL+FtT6md9ZUCmnuhvwsCIE60HIEDNq0+JmWQs8JOwpFTuPGF yQh9FnXRdVYzcEpqAHYAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQA AAGNjT4wrwAABAMARzBFAiEAyhpwMtAoOErWuVeIByZq5obflntE28pB/KFTOp8t 3skCIE2voPjvKami5bbtuht2694kb8kLroQ6MKhcQTOOMR+mMA0GCSqGSIb3DQEB CwUAA4IBAQC2VSi+MpdijNg6D+aHHSt/x8VVKSQTxhJcnlq1lA5fHMEfgC7f+Zs0 G1DEUllcTs9YNxuJkLVS0nnbe2jPcYQHmS4NegeWtwMBCOXWUgUMBhaZTu9CRXKA v7StFRxZQ/dE+ztDkKYuiiq24azODi7mwCIui9hm1B20uoqn2gzfPq0Hi+tk5Nbh sUJqjNW2Z+BVJEDVsfDJ2HfAoyeKM4iUPGPv32MSiXCxdoQWNS443GufSEm9VN6X gN3r846ql60AI3y+oCX1aCcwp5RWdmPBg+yfx1W8Y6bTln6RbmjADdoSHWxR3PaZ f2XhIwhvR8acNYVjVlRg1s4PNXkhuynC -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0W8a7z/ug9zS7VS3MUVv 7B7NfhWAW7ZEH9B4p5ni6JexuPLpppm/Uy3MLAreqT6mi4EbxxTNrAcsCdhszBas Mc66QMZOe1Yzhdj0U9pk5o1JUzyzYP3Y5jr+oS7B4gWKA/Nnhin96Xtje6rJaWVX om7y+vP3dWqxjKAvLW2SdXDnBI4qzo1dssIW8tROCWRz1uBOWw+aBPjybtHEjolg 3un+wV3ou/NVQ3XIhC65nI9cPR1qB+DusPW0fIHoLDyti/upihGITIrOJm7gZxVp +R+mi/AaUZmjbSYfhVoFV/I4cg3WNpDmXX5B5GQyF1nAfzJR9vZQPXV9FPSWjo3q wwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 422001534792968264381894760564474246734892 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-09 08:41:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-09 08:41:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'affirmingdignity.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26438593760493611637396958263509967656357093367038637297755699071129492899366457969838978760714234089926198738861757156337736578139919212245017062342160869532120173175348703609711881177940732945908451826501296858522530520542677316562126444814966248196596518574482206857334326424525253721906096213821073376271059111871095041605568309120715412705730018624003982719160587854695213454857103021166237809544261672348313107877735045132185188880241974023286137645877328562384047979435691211563639500843274860848362216329855429600666799713403390780439170708716381258925515433590716245466032749371016422482104339889601741974211 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4ca76dd3786841940be2e3ecb9b388bfa059966f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (166 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aasana.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'affirmingdignity.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ecommercecorp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'handymanportsmouth.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mayerresearch.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'petcit.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pouttext.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shaadidating.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.codgamedevclub.xyz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d8d3e30540000040300463044022064b7e66a81ac1324720084cd2a68b90d02482fe16d4fa99df595029a7ba1bf0b02204eb41c810336ad3e266590b3c24ec29153b8f185c9087d1675d1755633704a6a00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018d8d3e30af0000040300473045022100ca1a7032d028384ad6b9578807266ae686df967b44dbca41fca1533a9f2ddec902204dafa0f8ef29a9a2e5b6edba1b76ebde246fc90bae843a30a85c41338e311fa6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00b65528be3297628cd83a0fe6871d2b7fc7c555292413c6125c9e5ab5940e5f1cc11f802edff99b341b50c452595c4ecf58371b8990b552d279db7b68cf718407992e0d7a0796b7030108e5d652050c0616994eef42457280bfb4ad151c5943f744fb3b4390a62e8a2ab6e1acce0e2ee6c0222e8bd866d41db4ba8aa7da0cdf3ead078beb64e4d6e1b1426a8cd5b667e0552440d5b1f0c9d877c0a3278a3388943c63efdf63128970b1768416352e38dc6b9f4849bd54de9780ddebf38eaa97ad00237cbea025f5682730a794567663c183ec9fc755bc63a6d3967e916e68c00dda121d6c51dcf6997f65e123086f47c69c358563565460d6ce0f357921bb29c2