turntableneedles.org
Issued by R3
About this certificate
This digital certificate with serial number 03:45:52:24:75:0a:d1:82:a8:c7:13:a1:fe:36:ac:b4:fb:d0 was issued on by Let's Encrypt.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=turntableneedles.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:45:52:24:75:0a:d1:82:a8:c7:13:a1:fe:36:ac:b4:fb:d0Serial Number (int): 284925527105065809851044465580158211128272
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 64:f7:ba:b2:c8:73:0f:a1:aa:7e:b8:4f:c8:f2:1c:b6:b5:c5:e2:24
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ce:6d:ee:13:a5:6b:ac:df:66:c5:06:37:c2:ed:e8:1f:e8:97:e1:bd
Fingerprint (sha256): 53:81:39:35:b7:05:92:8c:f4:6c:b2:90:94:1b:1e:a5:54:53:2c:64:21:4b:d4:1f:83:28:74:9a:cb:ac:ea:1d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate turntableneedles.org
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for turntableneedles.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cantrlpew.com
federalblog.com
microb2b.com
poisonivypatrol.com
scheduletroy.com
southbendgarbage.com
tech-blog.com
turntableneedles.org
federalblog.com
microb2b.com
poisonivypatrol.com
scheduletroy.com
southbendgarbage.com
tech-blog.com
turntableneedles.org
Other certificates including the domain name turntableneedles.org
(limited to 100 certificates)
tribeclubs.com.turntableneedles.org
turntableneedles.org
getabetterjob.ca
turntableneedles.org
turntableneedles.org
netpositivewater.com.turntableneedles.org
turntableneedles.org
modaltownhome.ca
ukr.bible
turntableneedles.org
bideven.com.gameinn.org
turntableneedles.org
natecain.org
lia.ng
turntableneedles.org
bhagawadgita.org
arbitragee.com.mushroomclothing.org
turntableneedles.org
getabetterjob.ca
turntableneedles.org
turntableneedles.org
netpositivewater.com.turntableneedles.org
turntableneedles.org
modaltownhome.ca
ukr.bible
turntableneedles.org
bideven.com.gameinn.org
turntableneedles.org
natecain.org
lia.ng
turntableneedles.org
bhagawadgita.org
arbitragee.com.mushroomclothing.org
Certificate
The complete raw certificate details for turntableneedles.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgISA0VSJHUK0YKoxxOh/jastPvQMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTQwOTIyMDRaFw0yNDA3MTMwOTIyMDNaMB8xHTAbBgNVBAMT FHR1cm50YWJsZW5lZWRsZXMub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAwL6E0rgG8TSt2OVQtc138smYKtXwVlkSY8+fLip9AizPaJU1t5C1yVE6 CaG4slKUtnJ0a5rGrLeCxf0eKLzfW5edkO35e6s/bZeXMv6Kj7VRTvFluLishDIp nyBHze3r0Hg0B9ftnahMQAxN8LOUKOhdOLy1aDBO7vXmeqLA6MIbCTdYUWc4hbOF ePXVbPTyJcBqmWl9pRP71yyjLxrrhK9d4ioe2qego0EErgVuaKnNpamkd2SteyIJ ndtKlZcUXO4UkMHT+wbTjQKlcQhyB3LSV0tKNQtxrbP6PRiFSaYLkMtArWyM80h6 fXvhJ5Y4ANK+0PilM0GlXRQvHc1j0QIDAQABo4IClTCCApEwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBRk97qyyHMPoap+uE/I8hy2tcXiJDAfBgNVHSMEGDAWgBQULrMX t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0 dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu Y3Iub3JnLzCBmwYDVR0RBIGTMIGQgg1jYW50cmxwZXcuY29tgg9mZWRlcmFsYmxv Zy5jb22CDG1pY3JvYjJiLmNvbYITcG9pc29uaXZ5cGF0cm9sLmNvbYIQc2NoZWR1 bGV0cm95LmNvbYIUc291dGhiZW5kZ2FyYmFnZS5jb22CDXRlY2gtYmxvZy5jb22C FHR1cm50YWJsZW5lZWRsZXMub3JnMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBgYK KwYBBAHWeQIEAgSB9wSB9ADyAHcAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1y b+H61BcAAAGO3CDZhQAABAMASDBGAiEAyQvYSNl7ZV3o2+NObPy7ASf+dh3oCMgb C3nOnwrTR50CIQD8nwdWoMzP72g5TWrpGhMk0ES/SNNspCjq0zm4JsD0FAB3AHb/ iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjtwg2dUAAAQDAEgwRgIh AJ3ov2UQwCmEnaFRJQTiPYGWE+xoTpVhBpzd5qaeu6umAiEAt4P38QdV9ZoR4FO7 eh/07kKWA9kTziyTUaPHKbzKSCUwDQYJKoZIhvcNAQELBQADggEBAGpUCD8FsucD w3gU579u0sW1lOgkLDcYhHxCuoRQlfSf973f7TkjFmeF2byglQmQXHQgHcZfMZCz qWcfCENrM6tr9fo7p0pgkCoVO9e5jHAHVJXOuPXZCCvDJwLmGJf83kL76svFlpT7 dY4h5SxIV7qFTeiIsh5uPM9Z1TeBdagP+2nBfvv584nnS7wVLZgXoK+ASArIrZeD j3Ud1RObQX/O+Mw2If78DIBQ4uJYKhJKHkEXXNzQEWa2sH2W+1s7yjknoPg6lkzj Z9gPwqXKTUMilMlphfSypZ+TRqH6vTOWUS90k6RCk+XSdfS7ptn9ycok4HE2QaTv 1Os4frfWa7E= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwL6E0rgG8TSt2OVQtc13 8smYKtXwVlkSY8+fLip9AizPaJU1t5C1yVE6CaG4slKUtnJ0a5rGrLeCxf0eKLzf W5edkO35e6s/bZeXMv6Kj7VRTvFluLishDIpnyBHze3r0Hg0B9ftnahMQAxN8LOU KOhdOLy1aDBO7vXmeqLA6MIbCTdYUWc4hbOFePXVbPTyJcBqmWl9pRP71yyjLxrr hK9d4ioe2qego0EErgVuaKnNpamkd2SteyIJndtKlZcUXO4UkMHT+wbTjQKlcQhy B3LSV0tKNQtxrbP6PRiFSaYLkMtArWyM80h6fXvhJ5Y4ANK+0PilM0GlXRQvHc1j 0QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 284925527105065809851044465580158211128272 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-14 09:22:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-13 09:22:03 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'turntableneedles.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24331702895145017319868198013323744447181046556898870661155176012605844564712589907284536365677765085167288527109029706241784305618485389427322279051326028632128036726394247582933811731537641428581642310654162903595586415231007007895037853378005680159715954690863756112907401877806284458005238863179981174278949709284417324270036699009937527013630965332856436817226901438865380460465747569698578828427682590937110356227188356765178929765941978777338354210740879670014872872981741596704178743910348454104187040726224669666731070444436900111563911718481126513654821309409627649884470446064326141752409239212075934114769 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 64f7bab2c8730fa1aa7eb84fc8f21cb6b5c5e224 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (147 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cantrlpew.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'federalblog.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'microb2b.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'poisonivypatrol.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'scheduletroy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'southbendgarbage.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tech-blog.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'turntableneedles.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018edc20d9850000040300483046022100c90bd848d97b655de8dbe34e6cfcbb0127fe761de808c81b0b79ce9f0ad3479d022100fc9f0756a0cccfef68394d6ae91a1324d044bf48d36ca428ead339b826c0f41400770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018edc20d9d500000403004830460221009de8bf6510c029849da1512504e23d819613ec684e9561069cdde6a69ebbaba6022100b783f7f10755f59a11e053bb7a1ff4ee429603d913ce2c9351a3c729bcca4825 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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