catalinamassage.com.nationalhomeschoolconferences.org

Issued by R3

About this certificate

This digital certificate with serial number 04:5f:f8:29:c8:cc:f8:41:5e:76:21:7e:ab:66:59:dd:0e:db was issued on by Let's Encrypt.

With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=catalinamassage.com.nationalhomeschoolconferences.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:5f:f8:29:c8:cc:f8:41:5e:76:21:7e:ab:66:59:dd:0e:db
Serial Number (int): 381105834084377296871868656549271753789147
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: d6:91:69:67:00:46:8b:dd:63:af:59:8c:81:8f:e2:4e:ca:97:dd:d3
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 28:a0:a7:05:bb:7d:2d:dd:15:38:aa:54:d7:de:40:9b:d0:55:d6:b9
Fingerprint (sha256): 54:ac:5f:ff:c6:86:97:5a:c8:d2:0d:97:4f:fd:c3:9d:fc:2b:fc:40:ce:6a:7a:e4:df:d7:98:3b:11:f9:a6:41

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate catalinamassage.com.nationalhomeschoolconferences.org

12

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for catalinamassage.com.nationalhomeschoolconferences.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

catalinamassage.com.nationalhomeschoolconferences.org
floatationpods.com
hempbrand.com.thehardmoneyoffice.com
hempeh.com
homeequityarbitrage.com.leaseagpu.com
mydjdrop.info
newcanadianrepublic.com.axlecap.com
pixelportfolios.com
trellbeaty.com
webstorebuilders.com
wehonorchrist.net
yeagum.com

Other certificates including the domain name nationalhomeschoolconferences.org

(limited to 100 certificates)
pup.co.za
nationalhomeschoolconferences.org
ddd.vc
nationalhomeschoolconferences.org
hrisko.org
xian.bible
nationalhomeschoolconferences.org
catalinamassage.com.nationalhomeschoolconferences.org
andhradental.in.nationalhomeschoolconferences.org
nationalhomeschoolconferences.org
nationalhomeschoolconferences.org
movers-packers.in.nationalhomeschoolconferences.org
glaciercounty.com.nationalhomeschoolconferences.org
nationalhomeschoolconferences.org
nationalhomeschoolconferences.org
uoz.co.za

Certificate

The complete raw certificate details for catalinamassage.com.nationalhomeschoolconferences.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGODCCBSCgAwIBAgISBF/4KcjM+EFediF+q2ZZ3Q7bMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yMzEyMzEwODM0NTlaFw0yNDAzMzAwODM0NThaMEAxPjA8BgNVBAMT
NWNhdGFsaW5hbWFzc2FnZS5jb20ubmF0aW9uYWxob21lc2Nob29sY29uZmVyZW5j
ZXMub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1XxAIJWpQvE
Wd2o+VjSPvQJ7jD+QuSAztZaYjc4lZuI2QyK8313+3A5+JAWSZPkgUuq2YTyFHi8
7Qw4GTGt+xeNq9EERhnz1d1G4sz5YeaiKByRkD90r/cdu5kAdp6GQsIhT+ZQLhqo
KSBiJ1eNKrHwJ43jTLfVrqcVWd3Yl7wzWLoNbraGf36jMWsiZYlqWV6+Zxqhkf3z
bq7EkfzA/qcjRwqHkUmPZus/I5QueHgrV+Zmh80mjZCoA0UoheisGuHL958LRvGa
jZmNCzvGIBNTrGo11LD/iS76MLG6oXbdsuTiGEoCX0bYKMDoSZHZJacsixsQrqrz
SOxQ5OT96QIDAQABo4IDODCCAzQwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG
CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTWkWln
AEaL3WOvWYyBj+JOypfd0zAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTC
xjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNy
Lm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzCCAT8GA1Ud
EQSCATYwggEygjVjYXRhbGluYW1hc3NhZ2UuY29tLm5hdGlvbmFsaG9tZXNjaG9v
bGNvbmZlcmVuY2VzLm9yZ4ISZmxvYXRhdGlvbnBvZHMuY29tgiRoZW1wYnJhbmQu
Y29tLnRoZWhhcmRtb25leW9mZmljZS5jb22CCmhlbXBlaC5jb22CJWhvbWVlcXVp
dHlhcmJpdHJhZ2UuY29tLmxlYXNlYWdwdS5jb22CDW15ZGpkcm9wLmluZm+CI25l
d2NhbmFkaWFucmVwdWJsaWMuY29tLmF4bGVjYXAuY29tghNwaXhlbHBvcnRmb2xp
b3MuY29tgg50cmVsbGJlYXR5LmNvbYIUd2Vic3RvcmVidWlsZGVycy5jb22CEXdl
aG9ub3JjaHJpc3QubmV0ggp5ZWFndW0uY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIB
MIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC+p0w6xxSActW
3SyB2bu/qznYhHMAAAGMvzoDiwAABAMARzBFAiEA2BC3MuR1WjLRSmj8ky2CDhuR
ntIjhU38OaEzAg58jAMCIDxwn4iZq7hPYdEcKUsZ7lhr/82uq4uzpVoXEvAOrxxi
AHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGMvzoDugAABAMA
RzBFAiEApu9zWjxBh4ljgFsRAYSz7CcU43huMMqH4InsPD7YFo0CIETZ1z/Aeekk
Rh+G//vX+TpmgNsWHSxSpXjanj9maIvfMA0GCSqGSIb3DQEBCwUAA4IBAQCsE0pp
Zo6qFKGcqXHHWvgW9F5ker2npSg1OCGS8AE2PwStx8q95P8NAlezOTqRUsbISIbb
2y/E4MTzZIGDuHeKkBL5AIYctI1/Hi/6lZWIQshaUUOKPncpNn3k5M8Fj4/L+Zeb
qDlMfXeV2p5wLYH9xmJF/MWweOcw1oljUY6xzhhljmg4uyZjL6rM2E2IyPKCfZ3t
baDcG+m0LX6GG9wWySvHKZstxO0TpAxK4mhYws9Yu+Cj/m1uhlIZYGI4ym2DQKwJ
2ky263A4pQchD7deJ8sxaFbOX5wt+EHhq6QUUms5teYC3JAEMvbEPdMT+JnNronZ
7afa7CTyfdeIBFTM
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1XxAIJWpQvEWd2o+VjS
PvQJ7jD+QuSAztZaYjc4lZuI2QyK8313+3A5+JAWSZPkgUuq2YTyFHi87Qw4GTGt
+xeNq9EERhnz1d1G4sz5YeaiKByRkD90r/cdu5kAdp6GQsIhT+ZQLhqoKSBiJ1eN
KrHwJ43jTLfVrqcVWd3Yl7wzWLoNbraGf36jMWsiZYlqWV6+Zxqhkf3zbq7EkfzA
/qcjRwqHkUmPZus/I5QueHgrV+Zmh80mjZCoA0UoheisGuHL958LRvGajZmNCzvG
IBNTrGo11LD/iS76MLG6oXbdsuTiGEoCX0bYKMDoSZHZJacsixsQrqrzSOxQ5OT9
6QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 381105834084377296871868656549271753789147
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-31 08:34:59 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-30 08:34:58 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'catalinamassage.com.nationalhomeschoolconferences.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24153895539267652801242944650972064456690701312259965222854388986672095638387554955279881804776277503973108133509667670678886517084533269002470650630988070043155915605247482649390487049604071204006676392668165065413184085757422450206155577949023808378743989265049416743176737590031850081685125013617534854437542352855762367487484987509303889086822249611716983489543119181652902063378517059804613947484027082510058627444075485860484235747156764517028499237992414721796034727533791108366226162665440762634868450789540204071630295810532658880178120187722095726543940687619678160201310896321568378314628904303553732214249
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d691696700468bdd63af598c818fe24eca97ddd3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (310 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'catalinamassage.com.nationalhomeschoolconferences.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'floatationpods.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hempbrand.com.thehardmoneyoffice.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hempeh.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeequityarbitrage.com.leaseagpu.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mydjdrop.info'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'newcanadianrepublic.com.axlecap.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pixelportfolios.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'trellbeaty.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webstorebuilders.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wehonorchrist.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'yeagum.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018cbf3a038b0000040300473045022100d810b732e4755a32d14a68fc932d820e1b919ed223854dfc39a133020e7c8c0302203c709f8899abb84f61d11c294b19ee586bffcdaeab8bb3a55a1712f00eaf1c62007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018cbf3a03ba0000040300473045022100a6ef735a3c41878963805b110184b3ec2714e3786e30ca87e089ec3c3ed8168d022044d9d73fc079e924461f86fffbd7f93a6680db161d2c52a578da9e3f66688bdf
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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