lorentsen.me
Issued by R3
About this certificate
This digital certificate with serial number 03:8c:76:79:e2:1c:04:5f:b3:f4:ae:56:09:18:7d:cd:79:64 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=lorentsen.me
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:8c:76:79:e2:1c:04:5f:b3:f4:ae:56:09:18:7d:cd:79:64Serial Number (int): 309133870921678940225376079231821984659812
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f8:4a:58:aa:98:bd:b3:51:66:4e:9a:ce:31:11:dc:72:07:b9:d5:c0
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): a0:c1:1a:f8:83:43:29:fe:8b:e9:e3:67:4b:53:bf:2e:53:eb:bf:ca
Fingerprint (sha256): 5e:3b:13:78:eb:04:27:c8:c2:7a:12:15:84:a0:52:da:01:b7:1b:72:25:e6:00:22:81:0c:ab:5d:e0:ee:ec:68
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate lorentsen.me
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lorentsen.me
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lorentsen.me
www.lorentsen.me
www.lorentsen.me
Other certificates including the domain name lorentsen.me
(limited to 100 certificates)
www.lorentsen.me
connect.asmesecurity.com
connect.chartelgroup.com
administra.clubsoldadoselite.com
connect.spirertech.com
www.lorentsen.me
connect.lorentsen.me
connect.a7kq.com
connect.webreka.com.tr
connect.chartelgroup.com
lorentsen.me
community.naturalistparty.net
vo.snowmass.co
home.cleanbooks.net
connect.gdc.club
connect.jcmbusinesssolutions.co.uk
connect.softpme.cl
connect.puppa.net
home.cleanbooks.net
www.lorentsen.me
intranet.biolac.com.ar
lorentsen.me
intranet.supermetanol.com
intranet.songburdmusic.com
intranet.biolac.com.ar
connect.jcmbusinesssolutions.co.uk
administra.clubsoldadoselite.com
connect.asmesecurity.com
connect.chartelgroup.com
administra.clubsoldadoselite.com
connect.spirertech.com
www.lorentsen.me
connect.lorentsen.me
connect.a7kq.com
connect.webreka.com.tr
connect.chartelgroup.com
lorentsen.me
community.naturalistparty.net
vo.snowmass.co
home.cleanbooks.net
connect.gdc.club
connect.jcmbusinesssolutions.co.uk
connect.softpme.cl
connect.puppa.net
home.cleanbooks.net
www.lorentsen.me
intranet.biolac.com.ar
lorentsen.me
intranet.supermetanol.com
intranet.songburdmusic.com
intranet.biolac.com.ar
connect.jcmbusinesssolutions.co.uk
administra.clubsoldadoselite.com
Certificate
The complete raw certificate details for lorentsen.me in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgISA4x2eeIcBF+z9K5WCRh9zXlkMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MTQxNDQ5MjBaFw0yNDA4MTIxNDQ5MTlaMBcxFTATBgNVBAMT DGxvcmVudHNlbi5tZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALvv huzLKpg5BWuJq0nF1hlQZyAQMi8jBmu4hs1pnGFRmV6+09nrjUT7QcIHZKrs/BzA It44nXxQj+tStDvS9J84Zz2SXyZMl7SM8RPDJyS9k/d9aWRDPQy8aD/+uSXXcf8O 76eluynEB2BFNumpn68L2KTqUmBibCZseYkRlwNaTNUZInF5mfmlpuB9HfhlGya1 y+7myJwR7LnVAafz9nyTMk/mV4EE5pOLdAgc8gruWVopNgWTtQtvbZJxWLRlfP4x 2NGEq4hrtYDVlMiHf1b/tQ2Tp1WHhgtsMsJOJphIoQqQqxW4uCpo2ZdJZ7DvMFAJ bchs4a0mHyHgM3mQ2i0CAwEAAaOCAh4wggIaMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQU+EpYqpi9s1FmTprOMRHccge51cAwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w KQYDVR0RBCIwIIIMbG9yZW50c2VuLm1lghB3d3cubG9yZW50c2VuLm1lMBMGA1Ud IAQMMAowCAYGZ4EMAQIBMIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADuAHUAPxdLT9ci R1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGPd8tAxAAABAMARjBEAiAqcLw7 1c0aX34Yex7TuIzlJuhvmzrj0bltIq+MV7ATbgIgbAIqndqX+YY1FSDqQ5A0oRzS FAIoY58foMJjEsS+KvEAdQDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1 mwAAAY93y0iPAAAEAwBGMEQCIE5CRf+sTU0uB24oIl2SXN+4enuzN7okjUj5Sqt2 5sgOAiAXE5Ga+dyJEuJRmEFfu84IF5grynNY4m20h+CLOFlHTjANBgkqhkiG9w0B AQsFAAOCAQEATMNizVL0NhpeO7qfw9eJ6D1zGMgn/33rd0OJMeSD6q4UOUfcl0cz jDhi+qzt6jxOPrCLzPlV69kFSg5DGg75bM+pcTsH9jtjLXCqagDw4MIrSEnlqiNZ Yv+nRkoG2RocE5ysTjegHk0SHg6R33A5MG/Crq0/s+1pvJuBUdEQEm5qRi/oR8L0 bpVfdvIjjsyqrcMurHwMgRoDLSqHfHXs0mRbqlXWRwuM/eoQkrEheuPpGJFWl24S oXNF8ZkFUcYRgQjJNZuGD+AEaRXDtzu7z7vcgQGTJ0NDzxyBSW+Ar8YVYODgNLxt K9XAHrmZ52EklLzFekImEreMymQQkO4A2g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu++G7MsqmDkFa4mrScXW GVBnIBAyLyMGa7iGzWmcYVGZXr7T2euNRPtBwgdkquz8HMAi3jidfFCP61K0O9L0 nzhnPZJfJkyXtIzxE8MnJL2T931pZEM9DLxoP/65Jddx/w7vp6W7KcQHYEU26amf rwvYpOpSYGJsJmx5iRGXA1pM1RkicXmZ+aWm4H0d+GUbJrXL7ubInBHsudUBp/P2 fJMyT+ZXgQTmk4t0CBzyCu5ZWik2BZO1C29tknFYtGV8/jHY0YSriGu1gNWUyId/ Vv+1DZOnVYeGC2wywk4mmEihCpCrFbi4KmjZl0lnsO8wUAltyGzhrSYfIeAzeZDa LQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 309133870921678940225376079231821984659812 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-14 14:49:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-12 14:49:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lorentsen.me' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23724678219558634607057479588080918735774867803744397628059738350614440324143006591288616599175815418458513829185022458110154577006814178912811436150590595575535627013714689373830053706620732759571065597288130083241959693085589467410007795683794440480045942959036323977325659822018336372274809343299065559953132610949874404679775536348816076426644763655065901237290853102143299656553351784285660324077386482701425685622854597064079386306563386671679344968058702764547321112731335157762447501119102196821286830580463487994481988758049978977298827938143370418636186394566969649567507387236037921058919330913943144159789 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f84a58aa98bdb351664e9ace3111dc7207b9d5c0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lorentsen.me' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lorentsen.me' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f77cb40c4000004030046304402202a70bc3bd5cd1a5f7e187b1ed3b88ce526e86f9b3ae3d1b96d22af8c57b0136e02206c022a9dda97f986351520ea439034a11cd2140228639f1fa0c26312c4be2af1007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018f77cb488f000004030046304402204e4245ffac4d4d2e076e28225d925cdfb87a7bb337ba248d48f94aab76e6c80e02201713919af9dc8912e25198415fbbce0817982bca7358e26db487e08b3859474e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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