researchflatearth.org
Issued by R3
About this certificate
This digital certificate with serial number 04:36:62:78:9d:b9:5d:99:8d:eb:5b:06:e0:a9:b3:86:05:9e was issued on by Let's Encrypt.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=researchflatearth.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:36:62:78:9d:b9:5d:99:8d:eb:5b:06:e0:a9:b3:86:05:9eSerial Number (int): 366955282159006095128587986825960826996126
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 4f:b8:dd:75:24:4e:41:04:3c:c7:ae:76:a3:d8:18:ff:8c:3f:af:35
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 03:5f:2f:ca:a6:cd:f1:37:09:0d:a5:7a:4e:8a:f2:08:d1:36:05:57
Fingerprint (sha256): 5b:eb:13:14:ba:f3:77:36:5f:bc:11:4b:af:ca:d1:5f:c5:3c:18:7a:64:28:4c:b0:53:cf:18:98:7d:5e:75:40
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate researchflatearth.org
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for researchflatearth.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
danielcrane.com
getredapple.com
lgbtqgolf.com
mybanneradmanager.com
researchflatearth.org
teahon.com
getredapple.com
lgbtqgolf.com
mybanneradmanager.com
researchflatearth.org
teahon.com
Other certificates including the domain name researchflatearth.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for researchflatearth.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgISBDZieJ25XZmN61sG4KmzhgWeMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTQxNzU4NDhaFw0yNDA3MTMxNzU4NDdaMCAxHjAcBgNVBAMT FXJlc2VhcmNoZmxhdGVhcnRoLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAMy7Gi+9uBlnQ1Exqin0SXLpP4YUkQN2ozHyaUx7FC5eOFCiZIgNC5SB Mc2yk1mppGWmwqnkvJisGgT9rO/olXQYNdMyBOqUkc9bp7/njaKB3t1IkVxIWt59 3X5UhjVF2IPebmT44UzDfJNqyIuSVm8VNS1E1M5Mn7qrXjg/TVmfBxdye3yE9yJ5 3g+su5lsBqaWj28OP5mNFItWUPKjEyIqxyekHsGpc/nBQUB9GJWsu4sYLZyHd9Qx zLf5AGN4y7mxcrFxGLJeIwyu1fBV71uacf8VymlW6qWqC4yP+LvTXM30lEs3YZxE ZCnnXqt2yZHgK52EkCzyNAsNDg4JRAECAwEAAaOCAm0wggJpMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIw ADAdBgNVHQ4EFgQUT7jddSROQQQ8x652o9gY/4w/rzUwHwYDVR0jBBgwFoAUFC6z F7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVo dHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxl bmNyLm9yZy8wdAYDVR0RBG0wa4IPZGFuaWVsY3JhbmUuY29tgg9nZXRyZWRhcHBs ZS5jb22CDWxnYnRxZ29sZi5jb22CFW15YmFubmVyYWRtYW5hZ2VyLmNvbYIVcmVz ZWFyY2hmbGF0ZWFydGgub3Jnggp0ZWFob24uY29tMBMGA1UdIAQMMAowCAYGZ4EM AQIBMIIBBgYKKwYBBAHWeQIEAgSB9wSB9ADyAHcA7s3QZNXbGs7FXLedtM0TojKH Rny87N7DUUhZRnEftZsAAAGO3fnx8gAABAMASDBGAiEAketkOG9iAQ/JhCWtlCNi Yg1Tnclop8Lhaq1dqVmIl+oCIQDxRq9uPTbZZYYfhW963BfYSJIkRAE9UXV0hbx1 eT3S0AB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjt358kQA AAQDAEgwRgIhAN8CSryoPLrc2F/sDdJ1zf2JUCLqp9piCKk0J8Msb73qAiEAlvb1 mOj6cexd/+eDopEuji92ekci+zg8dubdGND2y4EwDQYJKoZIhvcNAQELBQADggEB AJEveJ//ePctRWGC1driE/0Ftpa6TeNHIhRnfMh0jttNGqAJYWHL1qr5sCCggZlj NJx3Bof4ppCdt1gVzQCoiRQRcrN9CZQzpuulbzGmQ83ta8i33RiNtu+GHjx5xI58 SowG6kwrykNtYH9VHB9QZOf6UoxZOmZskxC8n+So50gs5BviqPFEWkcqPBBOxNwi sOeoxhNOAmmCcSmLRcyewP5e2KVBf//XJmf21Zx65bRnnVPKa7yZnzu0oJRslWh1 Mw6vLk6UKhjgoIZD1CrQYLnNWws+KfWKi/LHvWmvGke2OSNkEDdeX9/3XQfWbhvl xkvZYOKFz0PQxjyXrZrIb1s= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLsaL724GWdDUTGqKfRJ cuk/hhSRA3ajMfJpTHsULl44UKJkiA0LlIExzbKTWamkZabCqeS8mKwaBP2s7+iV dBg10zIE6pSRz1unv+eNooHe3UiRXEha3n3dflSGNUXYg95uZPjhTMN8k2rIi5JW bxU1LUTUzkyfuqteOD9NWZ8HF3J7fIT3InneD6y7mWwGppaPbw4/mY0Ui1ZQ8qMT IirHJ6Qewalz+cFBQH0Ylay7ixgtnId31DHMt/kAY3jLubFysXEYsl4jDK7V8FXv W5px/xXKaVbqpaoLjI/4u9NczfSUSzdhnERkKedeq3bJkeArnYSQLPI0Cw0ODglE AQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 366955282159006095128587986825960826996126 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-14 17:58:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-13 17:58:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'researchflatearth.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25844877791464529585244243230427937878827537240199173604509781186953009233723931682282133031157326564231480202556552207609679781755990287437238149888852129923474003605542759785561695643045424748991764144791189188273642443624220329127464135217176737857332326582166637761655621476216976781343875671182985990965743944154862052267296036102901312573364358233985303155882822216805710481212199343099062824016835486765150405070167502000517764263835311611790932356437429004177210854600094899792157834899198105215344385845950676273640381069180325174308496097638617108014014961323584847299761699948335606532434948413715894584321 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4fb8dd75244e41043cc7ae76a3d818ff8c3faf35 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (109 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'danielcrane.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'getredapple.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lgbtqgolf.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mybanneradmanager.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'researchflatearth.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'teahon.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018eddf9f1f2000004030048304602210091eb64386f62010fc98425ad942362620d539dc968a7c2e16aad5da9598897ea022100f146af6e3d36d965861f856f7adc17d848922444013d51757485bc75793dd2d000770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018eddf9f2440000040300483046022100df024abca83cbadcd85fec0dd275cdfd895022eaa7da6208a93427c32c6fbdea02210096f6f598e8fa71ec5dffe783a2912e8e2f767a4722fb383c76e6dd18d0f6cb81 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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