fictions.net
Issued by R3
About this certificate
This digital certificate with serial number 04:fa:20:74:bd:9c:83:d1:cc:c6:41:f3:d4:df:07:44:4e:1e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=fictions.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:fa:20:74:bd:9c:83:d1:cc:c6:41:f3:d4:df:07:44:4e:1eSerial Number (int): 433562876905352114411470893891787956702750
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 7d:3b:82:6a:10:cc:39:3b:f8:dc:d9:80:1b:bf:b2:82:38:c4:07:98
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): da:f4:89:11:b9:4b:f2:0d:f5:92:f6:1a:fa:cb:81:ce:b2:9b:e2:eb
Fingerprint (sha256): 52:03:6e:c8:a8:43:50:0e:ac:71:2e:bc:93:62:3e:bf:0f:8b:5c:84:86:74:f7:98:02:bc:ee:fd:47:10:da:71
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate fictions.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for fictions.net
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
fictions.net
Other certificates including the domain name fictions.net
(limited to 100 certificates)
Certificate
The complete raw certificate details for fictions.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5DCCBMygAwIBAgISBPogdL2cg9HMxkHz1N8HRE4eMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjcxNTM3MjBaFw0yNDA2MjUxNTM3MTlaMBcxFTATBgNVBAMT DGZpY3Rpb25zLm5ldDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAJzN td1IUgjgT9YcbAvUeqb/A4/vhKqRT1rbgwn4ooITbCr6KLp+B3PHFc252avnZ4Ou 8/5Fx1dm3FBTT7AUt42CFXCB97PONqXy3oLCoprxfwvNwJmVmlJU/GuuC2QN6tvE P+JUUb/eFnfyjlfq4F0+fb/CgeZeBJyLx+WIogpLOfYyqwV/IVq2PD+PGhMFqnya 73llrTREZaehOgGN5g2DvzDn7Ivg5lY27LbXH8VhxK5CSAciiuD2ggnQjf7LpNDw i1DfXgYZv5nK+Y2xWXO4odujD8MPXp+qt18/TtoGtwX7JWN20T71YXM1Fw+YDhM5 e+QfchKkUw9poLWuOzcUNKA27duGFFBeyJD9XPFgwk7KJa7JusptNFas5KD7cKYT hJue0tt5WwrYC5WtaQNvJt/r4Y8O6ZhNN7nwj6RdBJhaFyBrHOVqFppU5thjjxv5 QA7kOrQJl1yf1KymglNRgfZTV8kRKy7E3o9XV/JKV6Mm3cNUOUJhJrdRoU45advg pyI85QeOSf16Dn0xXfjDlvshbLPliyLlivbhmmx3I2jLAEuGF2P+5dSrzLpLLeXp hMHdFEqJiUUQ8MYPQeG2GQc/qxj/F5AqD3hHbLeiRTuXvjR+0MugZ+c57E19Y52n 4Aq9l3Fxk0M4RTv0tGCEHOUoZrprKa83iu4/fmoNAgMBAAGjggINMIICCTAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFH07gmoQzDk7+NzZgBu/soI4xAeYMB8GA1UdIwQY MBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEF BQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8v cjMuaS5sZW5jci5vcmcvMBcGA1UdEQQQMA6CDGZpY3Rpb25zLm5ldDATBgNVHSAE DDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2AHb/iD8KtvuV UcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjoDF9s8AAAQDAEcwRQIgHYar7oEf BIVPLe3e4/vrQqLpmUb3+blk4pTSkuE33r4CIQDh2GCE2UG/glaw9XfdpW3LOFif 9H/xFuCBpXwzIOTbgwB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRz AAABjoDF9pMAAAQDAEYwRAIgRArvOkmj6KI4V1Xp9p011ORjYrNTBSBk7oE8LJb+ jKYCIAjEK0eK59W7/ewdjTQo2Ncbp6j/lkZiI9tlLe7zUpyHMA0GCSqGSIb3DQEB CwUAA4IBAQAVuS5V7YogbHSHVs8T59CP4G7kAC/pDCk0kEOHaa3oqoe6ZsGDiSAu eovEoG70LURuEpclojXjxJs/PZmFP47ppnKPjrRyqXk2+9mZ7V6oeOVGqv4sWkfr RMgpBQgR/ObCFBfO+q3Ubyej5Wn5ou5H88U/ygw0Q6SKhb9U8PzNaV7C5sjGpEYD VPtNBI/8zGeDcGYDP0NJqC4YbK3W9mcsXfYsVnytZ77phEabtkHB8n4YHHov1G/9 ROix3ELNr1c80EDr7/TdSh/Den0VDGS2f5HTE/HOzSly705TNYtLL0Q1+G57st0w 2Lz3Gcf0pE5Wzsb+lwq+OHKoK5t9qBdh -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnM213UhSCOBP1hxsC9R6 pv8Dj++EqpFPWtuDCfiighNsKvooun4Hc8cVzbnZq+dng67z/kXHV2bcUFNPsBS3 jYIVcIH3s842pfLegsKimvF/C83AmZWaUlT8a64LZA3q28Q/4lRRv94Wd/KOV+rg XT59v8KB5l4EnIvH5YiiCks59jKrBX8hWrY8P48aEwWqfJrveWWtNERlp6E6AY3m DYO/MOfsi+DmVjbsttcfxWHErkJIByKK4PaCCdCN/suk0PCLUN9eBhm/mcr5jbFZ c7ih26MPww9en6q3Xz9O2ga3BfslY3bRPvVhczUXD5gOEzl75B9yEqRTD2mgta47 NxQ0oDbt24YUUF7IkP1c8WDCTsolrsm6ym00VqzkoPtwphOEm57S23lbCtgLla1p A28m3+vhjw7pmE03ufCPpF0EmFoXIGsc5WoWmlTm2GOPG/lADuQ6tAmXXJ/UrKaC U1GB9lNXyRErLsTej1dX8kpXoybdw1Q5QmEmt1GhTjlp2+CnIjzlB45J/XoOfTFd +MOW+yFss+WLIuWK9uGabHcjaMsAS4YXY/7l1KvMukst5emEwd0USomJRRDwxg9B 4bYZBz+rGP8XkCoPeEdst6JFO5e+NH7Qy6Bn5znsTX1jnafgCr2XcXGTQzhFO/S0 YIQc5ShmumsprzeK7j9+ag0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 433562876905352114411470893891787956702750 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-27 15:37:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-25 15:37:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'fictions.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 639702698223325742608245846394500084146602066690898240217516064751738708526288901850945120328494666378500576464296369299086584531282620172134366638377881433730601986936422679332900892688269973617434687731740786029604494295198041228482636871580016696860102198158002517254258962456743149096911150320741731163571022093248424960438394196353201275503313772498805927759423514127022968308317360560790056816944088596844429125741924922299966055784386948526542332733959190459491901000972098481501739985183486214885133846830064798188551046952526747510589301643262726973255740838490558174413240090920311639203802878524336265017155763039956567961754052168030777866594775223868425464005857608897817609068916801156005745615559815586827667028475361681261155337158807897826563870413892397613781308531914537296912011439912845589344664749967265398578008341711669247951619938460861837376530941481347617769089911914292021278165984911105457977841634425531309181910240560518331669395032093744663337294046564318419604848216133485713580940780654572549727345769142251735554360813209024513717615873679300224872142967729809969444518056193509226998423396969420809502967165678089195055323195595306865814461575779243091531731416744606338980788604694043435892369933 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7d3b826a10cc393bf8dcd9801bbfb28238c40798 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fictions.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018e80c5f6cf000004030047304502201d86abee811f04854f2deddee3fbeb42a2e99946f7f9b964e294d292e137debe022100e1d86084d941bf8256b0f577dda56dcb38589ff47ff116e081a57c3320e4db8300750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e80c5f69300000403004630440220440aef3a49a3e8a2385755e9f69d35d4e46362b353052064ee813c2c96fe8ca6022008c42b478ae7d5bbfdec1d8d3428d8d71ba7a8ff96466223db652deef3529c87 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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