shapefashion.org

Issued by R3

About this certificate

This digital certificate with serial number 04:68:3e:9e:1c:11:f9:1a:9e:55:ec:20:73:77:aa:fb:af:cb was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=shapefashion.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:68:3e:9e:1c:11:f9:1a:9e:55:ec:20:73:77:aa:fb:af:cb
Serial Number (int): 383921742974792341685796883817295504977867
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 13:31:cb:cb:fd:0a:99:87:68:d4:33:72:c0:8c:f3:72:10:d0:e2:eb
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 8c:69:7a:92:70:be:22:54:95:ce:21:bb:c3:d8:6d:94:e7:28:5a:39
Fingerprint (sha256): 66:d4:16:95:7d:10:44:e0:1a:de:a8:21:a4:9b:fc:8c:d4:4e:bf:33:13:35:30:2e:3d:2d:26:09:35:77:81:78

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate shapefashion.org

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for shapefashion.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

huntingtonchristmaslightsinstalled.com
shapefashion.org

Other certificates including the domain name shapefashion.org

(limited to 100 certificates)
shapefashion.org
trade.limited
thematch.co.za
shapefashion.org
shapefashion.org
trade.limited
shapefashion.org
arbitrage.ag
powerbilt.club
shapefashion.org
justwanna.world
www.shapefashion.org
aplacetorecycle.org
trade.limited
cars101.world
medicalforkids.com.shapefashion.org
usc.mba
sculpit.media
jenksamericatoastmasters.club
upgrader.de
charlottekitchenandbathroom.com.shapefashion.org
jenksamericatoastmasters.club
shapefashion.org
justwanna.world
www.shapefashion.org
www.shapefashion.org
justwanna.world
radiantresults.world
www.shapefashion.org
trade.limited
wharf.website
drama.vc
impossible.ca
jenksamericatoastmasters.club
usc.mba
allanblock.ca
shapefashion.org
usc.mba
justwanna.world
impossible.ca
cryogenic.ninja
jenksamericatoastmasters.club
www.shapefashion.org
aplacetorecycle.org
jenksamericatoastmasters.club
arbitrageurs.cc
jenksamericatoastmasters.club
aaron.cc
jenksamericatoastmasters.club
shapefashion.org
www.cbbt.bible
hydratight.ca

Certificate

The complete raw certificate details for shapefashion.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv8OlH3Jrhm4++pL1kSPy
E3eBp4IRvkPCN8YmHQlSk9WLSEytvrkKBejIP0yTSzAD2ZneLZ315+IpHyee4N4h
YEBsPMKOI0mJoX2TsgHWVFRNi78LybAyAuJ2Qz9wBTqYI8vT/ARTi9bnbdSm09ox
B8EzY9uVUIv8tjqapb4+qqDuubeZQZUHJlnB6Oeu8i1ZNavMlWN3DNNDn8/EOmX8
fIMlmD4cvue8tHhG1kTeVojZiaFiVaJoVZC9cTEYbIdGA1g10Gy+ReWvh02lhDFB
k0NWmQQPogMLtSjYzFZ5H4Yi18PLpLdJds9M8g+LpU9eyez85iD8DJwtwGZjyvsG
ZwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 383921742974792341685796883817295504977867
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-29 11:46:49 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-28 11:46:48 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shapefashion.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24207992399202249755345531033602764525550378090374160707266809841967894243444910213227534400420032736283751743648094895570305385414744166552853096191741889208724381061225214595010012599082913130684204369218471557057393594168589821247041025353190469729535861213316074303135803816056077842279263623768921453409287369761792997013206791788965385175977305075444567879207026052984848465557550338758412175617131238530911881593898747400789149560064841394407182776490015947021300649519531417210141349698429025262503215676401295046483702296773167767289355822336427952263574931027106724903038712804928267953596648057133048989287
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							1331cbcbfd0a998768d43372c08cf37210d0e2eb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'huntingtonchristmaslightsinstalled.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shapefashion.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f200770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d554211f10000040300483046022100ee63f2be59bda17051e90d10f2373af7eb6fc1422ffe0447bee973ef6243259f022100f018492232d2fb45295543f90cda8267de3a1616e0d5cec39b54cd111a030cae0077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d554211ed0000040300483046022100f1441192802af7687e2adaea1336fa5300fa011c479ff614a7d8d479bed6d2c3022100f3241466f10d7d93f79a631557afec92e2c1c3ad258e24fdc94ead13167093b3
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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