shapefashion.org
Issued by R3
About this certificate
This digital certificate with serial number 04:68:3e:9e:1c:11:f9:1a:9e:55:ec:20:73:77:aa:fb:af:cb was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=shapefashion.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:68:3e:9e:1c:11:f9:1a:9e:55:ec:20:73:77:aa:fb:af:cbSerial Number (int): 383921742974792341685796883817295504977867
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 13:31:cb:cb:fd:0a:99:87:68:d4:33:72:c0:8c:f3:72:10:d0:e2:eb
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 8c:69:7a:92:70:be:22:54:95:ce:21:bb:c3:d8:6d:94:e7:28:5a:39
Fingerprint (sha256): 66:d4:16:95:7d:10:44:e0:1a:de:a8:21:a4:9b:fc:8c:d4:4e:bf:33:13:35:30:2e:3d:2d:26:09:35:77:81:78
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate shapefashion.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for shapefashion.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
huntingtonchristmaslightsinstalled.com
shapefashion.org
shapefashion.org
Other certificates including the domain name shapefashion.org
(limited to 100 certificates)
shapefashion.org
trade.limited
thematch.co.za
shapefashion.org
shapefashion.org
trade.limited
shapefashion.org
arbitrage.ag
powerbilt.club
shapefashion.org
justwanna.world
www.shapefashion.org
aplacetorecycle.org
trade.limited
cars101.world
medicalforkids.com.shapefashion.org
usc.mba
sculpit.media
jenksamericatoastmasters.club
upgrader.de
charlottekitchenandbathroom.com.shapefashion.org
jenksamericatoastmasters.club
shapefashion.org
justwanna.world
www.shapefashion.org
www.shapefashion.org
justwanna.world
radiantresults.world
www.shapefashion.org
trade.limited
wharf.website
drama.vc
impossible.ca
jenksamericatoastmasters.club
usc.mba
allanblock.ca
shapefashion.org
usc.mba
justwanna.world
impossible.ca
cryogenic.ninja
jenksamericatoastmasters.club
www.shapefashion.org
aplacetorecycle.org
jenksamericatoastmasters.club
arbitrageurs.cc
jenksamericatoastmasters.club
aaron.cc
jenksamericatoastmasters.club
shapefashion.org
www.cbbt.bible
hydratight.ca
trade.limited
thematch.co.za
shapefashion.org
shapefashion.org
trade.limited
shapefashion.org
arbitrage.ag
powerbilt.club
shapefashion.org
justwanna.world
www.shapefashion.org
aplacetorecycle.org
trade.limited
cars101.world
medicalforkids.com.shapefashion.org
usc.mba
sculpit.media
jenksamericatoastmasters.club
upgrader.de
charlottekitchenandbathroom.com.shapefashion.org
jenksamericatoastmasters.club
shapefashion.org
justwanna.world
www.shapefashion.org
www.shapefashion.org
justwanna.world
radiantresults.world
www.shapefashion.org
trade.limited
wharf.website
drama.vc
impossible.ca
jenksamericatoastmasters.club
usc.mba
allanblock.ca
shapefashion.org
usc.mba
justwanna.world
impossible.ca
cryogenic.ninja
jenksamericatoastmasters.club
www.shapefashion.org
aplacetorecycle.org
jenksamericatoastmasters.club
arbitrageurs.cc
jenksamericatoastmasters.club
aaron.cc
jenksamericatoastmasters.club
shapefashion.org
www.cbbt.bible
hydratight.ca
Certificate
The complete raw certificate details for shapefashion.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISBGg+nhwR+RqeVewgc3eq+6/LMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMjkxMTQ2NDlaFw0yNDA0MjgxMTQ2NDhaMBsxGTAXBgNVBAMT EHNoYXBlZmFzaGlvbi5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/w6UfcmuGbj76kvWRI/ITd4GnghG+Q8I3xiYdCVKT1YtITK2+uQoF6Mg/TJNL MAPZmd4tnfXn4ikfJ57g3iFgQGw8wo4jSYmhfZOyAdZUVE2LvwvJsDIC4nZDP3AF Opgjy9P8BFOL1udt1KbT2jEHwTNj25VQi/y2Opqlvj6qoO65t5lBlQcmWcHo567y LVk1q8yVY3cM00Ofz8Q6Zfx8gyWYPhy+57y0eEbWRN5WiNmJoWJVomhVkL1xMRhs h0YDWDXQbL5F5a+HTaWEMUGTQ1aZBA+iAwu1KNjMVnkfhiLXw8ukt0l2z0zyD4ul T17J7PzmIPwMnC3AZmPK+wZnAgMBAAGjggI8MIICODAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFBMxy8v9CpmHaNQzcsCM83IQ0OLrMB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMEMGA1UdEQQ8MDqCJmh1bnRpbmd0b25jaHJpc3RtYXNsaWdodHNpbnN0YWxs ZWQuY29tghBzaGFwZWZhc2hpb24ub3JnMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIB BgYKKwYBBAHWeQIEAgSB9wSB9ADyAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB 2bu/qznYhHMAAAGNVUIR8QAABAMASDBGAiEA7mPyvlm9oXBR6Q0Q8jc69+tvwUIv /gRHvulz72JDJZ8CIQDwGEkiMtL7RSlVQ/kM2oJn3joWFuDVzsObVM0RGgMMrgB3 ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjVVCEe0AAAQDAEgw RgIhAPFEEZKAKvdofira6hM2+lMA+gEcR5/2FKfY1Hm+1tLDAiEA8yQUZvENfZP3 mmMVV6/skuLBw60ljiT9yU6tExZwk7MwDQYJKoZIhvcNAQELBQADggEBAC2IgPVT e+Vn9CgdyWB4hYWiOz3DwiOgpkhtp+eN5+OrWWZPftFC4mec45U/BhLgy4TIXm47 1l6NHMwc3gSS0yPgLM5cNqRAUj1OzryeP4eEJTf61vlkWfirbndksPfiJzHn16lu UG6HQtx7wg3Q3ehe/7sfdT2l9eGCof5iABCY9NEMLkISid4GWJYmXD6OUies3A3I Xw1hICn0BTLgwRcxjmHndd7xDjDBVYOeB/SyT9BVAQHqDWmeMvFrrOfiil0EO7TW PJaSwNpom9oKpQMWeYIsrqh0q/KXOmVySuE7qKIii3bcOmTspg37jIXhhLnMBqwJ vbSGVlLeKGyAPQg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv8OlH3Jrhm4++pL1kSPy E3eBp4IRvkPCN8YmHQlSk9WLSEytvrkKBejIP0yTSzAD2ZneLZ315+IpHyee4N4h YEBsPMKOI0mJoX2TsgHWVFRNi78LybAyAuJ2Qz9wBTqYI8vT/ARTi9bnbdSm09ox B8EzY9uVUIv8tjqapb4+qqDuubeZQZUHJlnB6Oeu8i1ZNavMlWN3DNNDn8/EOmX8 fIMlmD4cvue8tHhG1kTeVojZiaFiVaJoVZC9cTEYbIdGA1g10Gy+ReWvh02lhDFB k0NWmQQPogMLtSjYzFZ5H4Yi18PLpLdJds9M8g+LpU9eyez85iD8DJwtwGZjyvsG ZwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 383921742974792341685796883817295504977867 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-29 11:46:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-28 11:46:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shapefashion.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24207992399202249755345531033602764525550378090374160707266809841967894243444910213227534400420032736283751743648094895570305385414744166552853096191741889208724381061225214595010012599082913130684204369218471557057393594168589821247041025353190469729535861213316074303135803816056077842279263623768921453409287369761792997013206791788965385175977305075444567879207026052984848465557550338758412175617131238530911881593898747400789149560064841394407182776490015947021300649519531417210141349698429025262503215676401295046483702296773167767289355822336427952263574931027106724903038712804928267953596648057133048989287 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1331cbcbfd0a998768d43372c08cf37210d0e2eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'huntingtonchristmaslightsinstalled.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shapefashion.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f200770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d554211f10000040300483046022100ee63f2be59bda17051e90d10f2373af7eb6fc1422ffe0447bee973ef6243259f022100f018492232d2fb45295543f90cda8267de3a1616e0d5cec39b54cd111a030cae0077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d554211ed0000040300483046022100f1441192802af7687e2adaea1336fa5300fa011c479ff614a7d8d479bed6d2c3022100f3241466f10d7d93f79a631557afec92e2c1c3ad258e24fdc94ead13167093b3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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