www.geek-salon.com
Issued by R3
About this certificate
This digital certificate with serial number 03:79:48:48:b3:dc:c5:61:bd:b5:cd:f3:98:a5:b3:d1:f6:96 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.geek-salon.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:79:48:48:b3:dc:c5:61:bd:b5:cd:f3:98:a5:b3:d1:f6:96Serial Number (int): 302607106101827223984785788378363150333590
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 46:04:21:86:fc:11:54:d9:10:03:28:2b:a4:d7:54:fe:71:70:9a:2c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 54:27:37:c1:57:b5:dc:2d:47:47:27:9c:9c:e9:b8:76:2b:a3:5b:4e
Fingerprint (sha256): 56:28:72:20:48:37:f6:64:6f:d8:12:2a:c8:4d:e9:57:4e:a0:5f:84:9e:0b:90:57:76:cd:6e:76:ec:b7:04:77
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.geek-salon.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.geek-salon.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
geek-salon.com
www.geek-salon.com
www.geek-salon.com
Other certificates including the domain name geek-salon.com
(limited to 100 certificates)
chaps.app
m-ven.co.uk
www.geek-salon.com
geek-salon.com
www.geek-salon.com
*.geek-salon.com
l.artpix3d.com
seattlerudram.org
mapmaker.mmrstg.com
rxgrad.com
geek-salon.com
shaltoot.info
www.geek-salon.com
*.geek-salon.com
watawalatea.lk
admin-staging.changera.co
*.geek-salon.com
admin-staging.changera.co
www.geek-salon.com
admin.haligroups.com.au
global.geek-salon.com
assets.library.geek-salon.com
programming.geek-salon.com
www.geek-salon.com
geek-salon.com
exsys.geek-salon.com
www.geek-salon.com
programming.geek-salon.com
geek-salon.com
geek-salon.com
www.a2mediaworks.in
programming.geek-salon.com
www.wifi-speedtest.com
*.geek-salon.com
web.aplano.de
*.geek-salon.com
halohairderbyshire.co.uk
programming.geek-salon.com
geek-salon.com
www.geek-salon.com
ocfolc.com
*.geek-salon.com
www.wifi-speedtest.com
www.hackerhostel.com.jm
m-ven.co.uk
www.geek-salon.com
geek-salon.com
www.geek-salon.com
*.geek-salon.com
l.artpix3d.com
seattlerudram.org
mapmaker.mmrstg.com
rxgrad.com
geek-salon.com
shaltoot.info
www.geek-salon.com
*.geek-salon.com
watawalatea.lk
admin-staging.changera.co
*.geek-salon.com
admin-staging.changera.co
www.geek-salon.com
admin.haligroups.com.au
global.geek-salon.com
assets.library.geek-salon.com
programming.geek-salon.com
www.geek-salon.com
geek-salon.com
exsys.geek-salon.com
www.geek-salon.com
programming.geek-salon.com
geek-salon.com
geek-salon.com
www.a2mediaworks.in
programming.geek-salon.com
www.wifi-speedtest.com
*.geek-salon.com
web.aplano.de
*.geek-salon.com
halohairderbyshire.co.uk
programming.geek-salon.com
geek-salon.com
www.geek-salon.com
ocfolc.com
*.geek-salon.com
www.wifi-speedtest.com
www.hackerhostel.com.jm
Certificate
The complete raw certificate details for www.geek-salon.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgISA3lISLPcxWG9tc3zmKWz0faWMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMTYyMzA1MDhaFw0yNDAxMTQyMzA1MDdaMB0xGzAZBgNVBAMT End3dy5nZWVrLXNhbG9uLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANKizsz/J2cb3trgrKwfLDfFZmSyzS9rF0BfgyLPsuve9L8vzCXBF2W7J6sO gGfH8iKR7SwlmLH/thcT1IRsUsof3FWJrn/Tqzzs3zMrkEI+iUyBOJr9Zk71Nxrt eqs2Vjjc5s8KjBkjIfGbsBwu0eweDgcqdS8D6o9ldqlHelg46PWXWRdszFsEcJ4s 6GIZZfGuc03jH3lmQ+UCT8l0FMSvQn3cqfdHLX+N5/lCMsIk+i2yahvBexaVCqCG 1AUbG3hlt/lucSKxkGj+S9cSWEV/XmtZkAuH/sd7ZZXRZTkbt/119cR0rmRQO5dj 0o7RKuDMts4iT7LQ1ZS296sBpx0CAwEAAaOCAiQwggIgMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQURgQhhvwRVNkQAygrpNdU/nFwmiwwHwYDVR0jBBgwFoAUFC6zF7dY VsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRw Oi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNy Lm9yZy8wLQYDVR0RBCYwJIIOZ2Vlay1zYWxvbi5jb22CEnd3dy5nZWVrLXNhbG9u LmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA 8AB3ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABizrzWTIAAAQD AEgwRgIhALA+K6hx48g95Qx4k1Q/pF3HgswRr8kPfz1BDqrSl2NXAiEA4y7efngP 4LKZm8Jgzr23YCrf2CYsvsGKxnVsxWIUBrIAdQDuzdBk1dsazsVct520zROiModG fLzs3sNRSFlGcR+1mwAAAYs681kvAAAEAwBGMEQCIEbWVWzArt4gJWgaJB6FibBH DWnAsS9kTZNhOBrYWAVOAiA0rU8t98T/WTbw56q6r/BUMYtUipTHE0eBXPp14gTu VzANBgkqhkiG9w0BAQsFAAOCAQEABGZvEVeGet4WFsrQQpVW1TyA9YMu9dtR//LH A1nMAIx0ndvhetlZ4MpCTj0TVw2h7IeWfWkxaPUKj/gYql9bI2xMCmjmTLCGLdqV t5DJiA+bVyyj+UVLCZWYXyqH6XW8wajHJml/J//W+0pVBHuCvnqKaeyxAiJsWmv8 UiVPDd5OdPyVE1Dk8+9fBgPDfM8v2q8oV82wRMtxH8Df8DyrU29sIQ/BEAUY3obE zFMyMhL3/yuwkJ/BFJmCT3oThJEgTlqDkKea/hcfGbpc2ecoG5K17kB5Etvsf5BP Wx3WQkKz0EYDLGnbBSVG1RnbozynkUrOQfeA15lBniEiexMzkQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0qLOzP8nZxve2uCsrB8s N8VmZLLNL2sXQF+DIs+y6970vy/MJcEXZbsnqw6AZ8fyIpHtLCWYsf+2FxPUhGxS yh/cVYmuf9OrPOzfMyuQQj6JTIE4mv1mTvU3Gu16qzZWONzmzwqMGSMh8ZuwHC7R 7B4OByp1LwPqj2V2qUd6WDjo9ZdZF2zMWwRwnizoYhll8a5zTeMfeWZD5QJPyXQU xK9Cfdyp90ctf43n+UIywiT6LbJqG8F7FpUKoIbUBRsbeGW3+W5xIrGQaP5L1xJY RX9ea1mQC4f+x3tlldFlORu3/XX1xHSuZFA7l2PSjtEq4My2ziJPstDVlLb3qwGn HQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 302607106101827223984785788378363150333590 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-16 23:05:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-14 23:05:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.geek-salon.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26590327568904007422705945846084297951605186293023155213544126452562289958696861956114232724105539069586621315567612155242315228076839945591124418102663089014505723655512462297707474310545966492189502872686912782262537345712382871105867290991441240453010722667062972954388448385879900148923238595146959185616653892667025850285656157946362545231656329123113415297367168507207371745227971837445087918453737335748228646089721583396000779326920059134376605553115043715140671591353243837761644912316690202715064314202088381446653195636348901387304442842237425492712432877714479292745942990466613554544369300317306903176989 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 46042186fc1154d91003282ba4d754fe71709a2c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'geek-salon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.geek-salon.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b3af359320000040300483046022100b03e2ba871e3c83de50c7893543fa45dc782cc11afc90f7f3d410eaad2976357022100e32ede7e780fe0b2999bc260cebdb7602adfd8262cbec18ac6756cc5621406b2007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018b3af3592f0000040300463044022046d6556cc0aede2025681a241e8589b0470d69c0b12f644d9361381ad858054e022034ad4f2df7c4ff5936f0e7aabaaff054318b548a94c71347815cfa75e204ee57 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0004666f1157867ade1616cad0429556d53c80f5832ef5db51fff2c70359cc008c749ddbe17ad959e0ca424e3d13570da1ec87967d693168f50a8ff818aa5f5b236c4c0a68e64cb0862dda95b790c9880f9b572ca3f9454b0995985f2a87e975bcc1a8c726697f27ffd6fb4a55047b82be7a8a69ecb102226c5a6bfc52254f0dde4e74fc951350e4f3ef5f0603c37ccf2fdaaf2857cdb044cb711fc0dff03cab536f6c210fc1100518de86c4cc53323212f7ff2bb0909fc11499824f7a138491204e5a8390a79afe171f19ba5cd9e7281b92b5ee407912dbec7f904f5b1dd64242b3d046032c69db052546d519dba33ca7914ace41f780d799419e21227b133391