healingheartsclub.bible
Issued by R3
About this certificate
This digital certificate with serial number 04:36:aa:42:e9:74:29:db:e8:fa:98:5f:e0:9a:86:f4:2b:2b was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=healingheartsclub.bible
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:36:aa:42:e9:74:29:db:e8:fa:98:5f:e0:9a:86:f4:2b:2bSerial Number (int): 367050707726652621853397689502175067384619
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 11:33:96:39:6e:2c:b2:26:75:b9:fd:88:e3:b1:08:88:35:72:00:46
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ca:34:41:73:0b:3f:77:b3:2c:57:ce:1c:94:45:01:c7:97:95:74:29
Fingerprint (sha256): 68:b3:32:35:c7:1d:80:d6:39:b6:f4:78:aa:b3:e9:e9:2d:63:6d:d2:d0:e8:52:88:82:93:11:93:ee:98:90:66
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate healingheartsclub.bible
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for healingheartsclub.bible
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.healingheartsclub.bible
healingheartsclub.bible
healingheartsclub.bible
Other certificates including the domain name healingheartsclub.bible
(limited to 100 certificates)
Certificate
The complete raw certificate details for healingheartsclub.bible in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGFjCCBP6gAwIBAgISBDaqQul0Kdvo+phf4JqG9CsrMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDYxODU0MTBaFw0yNDA3MDUxODU0MDlaMCIxIDAeBgNVBAMT F2hlYWxpbmdoZWFydHNjbHViLmJpYmxlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8A MIICCgKCAgEAuPEGH8OtHHfsLfD0Ka77WOQlN13+HHccYFv8+fHJTANaeB3wz+kv JI5InJ12spPyvjCEvRZJX5YRDZL6l2mzg69v1ac03euxiDD/RI6qbItCEGTwXyDk b9hNIgMBnI+r/13YKxO/ZzNa7pc9A76YqOVw/HgtzBU4xkaNbHqqpwb8kZxJzIi8 FrV8izQG5y5+7QwOoFZcKyVysJ3MiEygMnAJ3CzMWHnIcdm2lYAizcD1mNrbGq4L oE13tnmlnzxHt1/a9EB1O5MEazMqreil2mmo4WG1Urb37qoon6k2J7gPqguVfICn QjbjAooz+xQRDRcuW0n/QZz4Fmh7PEHpf9mGY64g70rheL/ZxGNx5UxwzYTKhgZU eFkPTFt0zCvUPxVE4RiFjUvdm4U6VufRzsQF+LlmYFk6kBxaKfSDv7u1nFxnhj0V Cy8LjAmLGLQ7M57zki40X0owbiZ87ivAC2hYoT1Sf2JEI0gTrJ7MpTrpUdiFjdKX PbuTck6mFgFOM5gqgwfgdkTBbM5xI0JZY+JnvZFfIv1J1OItp11Yjwo4qPk8CGmA knClKBhkOddrDKAVQ1vcdPg+WFZauhCImb2VT8Xdg4KXp4jdh3HZ5a4P6NY6SGr2 R4a+kB4AGy7DUZOwz/lgFgWBjTY/Vsmcx8JO3od1nHVv18AA6yFSus0CAwEAAaOC AjQwggIwMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUETOWOW4ssiZ1uf2I47EIiDVy AEYwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEE STBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUH MAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wPQYDVR0RBDYwNIIZKi5oZWFsaW5n aGVhcnRzY2x1Yi5iaWJsZYIXaGVhbGluZ2hlYXJ0c2NsdWIuYmlibGUwEwYDVR0g BAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgA7U3d1Pi25 gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAY60+cL3AAAEAwBHMEUCIGswP4Yz WylACvABq4js/fpbyDPVctPry9dEdgaLrgsIAiEA+r8DmYMaAyL8hpu6MFrzAlnf Axt9a6VSi6bqfvScxHkAdgDf4VbrqgWvtZwPhnGNqMAyTq5W2W6n9aVqAdHBO75S XAAAAY60+cO+AAAEAwBHMEUCIQCI6XVEhiqJ/rax94Ad3Og+bRmcESioHOtmM4SG uO0nhQIgXF7qjlAl+c9cbNcV5OqTCPXObTwjLbNQJicvyTD2R1UwDQYJKoZIhvcN AQELBQADggEBACh2lIh7mWSzyz8LzwdxNutuCv5cn85ptQP+vLZUK/B5le32ej1Y j1LyBn92lR5T9OqrHFQtSTfwJFPjg9rrTqIBR0wwqY/nUx8JpYqZjk5FvykOjC2k SD7gsWLL55PE4HOliCBsckwPuq+M9Mp+xFAta7FOkVVK57fHcbsf7J4GbKZnRLf4 vSpDO2QPkKY1lJbc9nVFn+V+hQmgL8UKBHo/B21fy/uiMwjzT1KQGQC0ayksqrpz Dh4CFz6oPsB24yG1cPgclPqslByqRM9iHcm4QsRtdAoC/8EJxpzjRUDemStJcXP0 BqghGzMXigAxPqV5oOfivm+ULHmN4P6H8es= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuPEGH8OtHHfsLfD0Ka77 WOQlN13+HHccYFv8+fHJTANaeB3wz+kvJI5InJ12spPyvjCEvRZJX5YRDZL6l2mz g69v1ac03euxiDD/RI6qbItCEGTwXyDkb9hNIgMBnI+r/13YKxO/ZzNa7pc9A76Y qOVw/HgtzBU4xkaNbHqqpwb8kZxJzIi8FrV8izQG5y5+7QwOoFZcKyVysJ3MiEyg MnAJ3CzMWHnIcdm2lYAizcD1mNrbGq4LoE13tnmlnzxHt1/a9EB1O5MEazMqreil 2mmo4WG1Urb37qoon6k2J7gPqguVfICnQjbjAooz+xQRDRcuW0n/QZz4Fmh7PEHp f9mGY64g70rheL/ZxGNx5UxwzYTKhgZUeFkPTFt0zCvUPxVE4RiFjUvdm4U6VufR zsQF+LlmYFk6kBxaKfSDv7u1nFxnhj0VCy8LjAmLGLQ7M57zki40X0owbiZ87ivA C2hYoT1Sf2JEI0gTrJ7MpTrpUdiFjdKXPbuTck6mFgFOM5gqgwfgdkTBbM5xI0JZ Y+JnvZFfIv1J1OItp11Yjwo4qPk8CGmAknClKBhkOddrDKAVQ1vcdPg+WFZauhCI mb2VT8Xdg4KXp4jdh3HZ5a4P6NY6SGr2R4a+kB4AGy7DUZOwz/lgFgWBjTY/Vsmc x8JO3od1nHVv18AA6yFSus0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 367050707726652621853397689502175067384619 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-06 18:54:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-05 18:54:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'healingheartsclub.bible' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 754495492165686655284553063181344998269510481340052815080985821950226329604830604215844248428232126038476278668152652735009651656747951138418393449064292130196836392404182829178699122295985593116500734858301629055497528804992986292645861336896505937992066961629662090503719731236598855566887634892375265342196530833965955470943916335713217196358332649312680297830873876143764518718059831297999852625909356774389852992398250405260199332584591405885898101528535886264780795310643854765935911928036305933187059408102785598012931193330595349934653069280133841774083692778193622997106880655053029878095674271677090577483924774176566525229363922709285503457931134387315323996658479102935719112265084244772833291897207936420205156550429514276127677168555974117684816002115404032853769551079635813954184288023986361729904550602251659842235369671652358537538754934759581976055766657796625500529631418036657607908407033904467768739161981389018678123512039640755962429143222751276202437732318494097687155587864089597681728878179651101313595800791042435673611070419651078889609454334637393059496603374690807959248343858869960474164034534510399764201864768596621429672500782474665628596384725332044374643798498419129381398304107141709722763311821 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 113396396e2cb22675b9fd88e3b1088835720046 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.healingheartsclub.bible' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healingheartsclub.bible' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018eb4f9c2f7000004030047304502206b303f86335b29400af001ab88ecfdfa5bc833d572d3ebcbd74476068bae0b08022100fabf0399831a0322fc869bba305af30259df031b7d6ba5528ba6ea7ef49cc479007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018eb4f9c3be000004030047304502210088e97544862a89feb6b1f7801ddce83e6d199c1128a81ceb66338486b8ed278502205c5eea8e5025f9cf5c6cd715e4ea9308f5ce6d3c232db35026272fc930f64755 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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