bdsm-guide.com
Issued by R3
About this certificate
This digital certificate with serial number 03:c0:4f:46:33:91:94:e5:5e:62:d4:01:fc:2b:7c:17:ee:73 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=bdsm-guide.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c0:4f:46:33:91:94:e5:5e:62:d4:01:fc:2b:7c:17:ee:73Serial Number (int): 326776445762485085138728299497273538637427
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 56:45:1c:a9:15:f7:b8:f7:93:e9:99:be:83:30:b7:8c:76:1e:79:80
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): e8:43:e3:eb:7e:ae:29:67:68:ca:1c:ae:a8:03:cc:fb:78:ad:a1:0e
Fingerprint (sha256): 71:ed:ae:d6:47:c3:00:54:a8:e0:9b:63:b2:ec:8b:6d:a5:e4:29:fc:32:d1:da:3d:df:b4:05:63:08:d2:01:40
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate bdsm-guide.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bdsm-guide.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bdsm-guide.com
www.bdsm-guide.com
www.bdsm-guide.com
Other certificates including the domain name bdsm-guide.com
(limited to 100 certificates)
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
bdsm-guide.com
Certificate
The complete raw certificate details for bdsm-guide.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISA8BPRjORlOVeYtQB/Ct8F+5zMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMTMwNjQ5MDRaFw0yNDA1MTMwNjQ5MDNaMBkxFzAVBgNVBAMT DmJkc20tZ3VpZGUuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA 8KclUNqsTH51XNtH4Z8IJXWb0X4cKeIfa523k1T5dpptilGdJZha7JEGW+33bDAQ ywbvso69rF81ZogROWDme2XPrYusWKMepSNRvKAZNzSsF2dl1hvuU1vDP1CVwrcH 0euhVhnOaxUqKSQTLQbGX009I7GxTW+TItFSbN8gu7c7o6Vp8ApNRQiqx/Y+hpRt 0d/i2052RbJsJXUXUDC2UscU1OCjYvbMJ70nM8ls38Unf5FFKVis0Ci1xBTcP30H 4MySbIrownkDR2IEeiZ7JI5Lxz4dr+9PahqoWwBobZdyfrHBXPTpsIVWAdytjPZ9 wbi9ITXsMFuR1+cFBPsziQIDAQABo4ICJTCCAiEwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBRWRRypFfe495Ppmb6DMLeMdh55gDAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzAtBgNVHREEJjAkgg5iZHNtLWd1aWRlLmNvbYISd3d3LmJkc20tZ3VpZGUuY29t MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcA 7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGNoXDeNQAABAMASDBG AiEAkqZlaqOTypOcgD0r1qgU6QeiAu82rWDbigo45rY3DUsCIQDzuuVSlyUhGhqi VQWZVr7B4g3ZkJh/DxouXTMGJQMDPwB2AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i 2reK+Jpt9RfYAAABjaFw3FoAAAQDAEcwRQIhANjWMv6xJcvjHMBO8NkmEJmrI1B6 ausUwUIvPVocJTXnAiBrQXDiScpXCI3loiWxTEfsZ0ueRndW8g/J48qZ+JbmGzAN BgkqhkiG9w0BAQsFAAOCAQEADdjtHHd3aOA6mUjHPUo3XhDIyJIgGAWBGTtoI93g zXt7YuJDV3BL5xz9v+U1OUFHzM1JvJklTixv43A5CcJICzP/FwM/l+WYPK+Mo+Yd ftOKEyFgbuKjbPvkO8j5dnl5xnq4W1fMuA9kbz0U74ErCQ68VHxbZ1LYYppRlcFy 5gdpqznYNqL/jV6p7Mg/4v6edBI+VdD9U7t2egi74ftvwbbPvu9JJrJPz8qs4g1M pRFKd/MoG9vqm5X73q9tHX6+5rES+/PapTBmSRzkonoGKdvJQlMOEdUkPJBdA2/j r+tYC5kYmHT0TQO+i4X1baxWkiCHtsgWapGXeJENq+kZyg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8KclUNqsTH51XNtH4Z8I JXWb0X4cKeIfa523k1T5dpptilGdJZha7JEGW+33bDAQywbvso69rF81ZogROWDm e2XPrYusWKMepSNRvKAZNzSsF2dl1hvuU1vDP1CVwrcH0euhVhnOaxUqKSQTLQbG X009I7GxTW+TItFSbN8gu7c7o6Vp8ApNRQiqx/Y+hpRt0d/i2052RbJsJXUXUDC2 UscU1OCjYvbMJ70nM8ls38Unf5FFKVis0Ci1xBTcP30H4MySbIrownkDR2IEeiZ7 JI5Lxz4dr+9PahqoWwBobZdyfrHBXPTpsIVWAdytjPZ9wbi9ITXsMFuR1+cFBPsz iQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 326776445762485085138728299497273538637427 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-13 06:49:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-13 06:49:03 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bdsm-guide.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30379615840503369683043227898007754007724420033605127873896475431757870710490001784459435492033021958011799551396683118702332710990185587594413879889660823278170046899401947590061883360011479412998076801716291714189739192811703559928539637815272094262829738853337096872176823718211398563378656499753819827502687389619877836993853231290674308605846496937460899476046068103779392726893445652148760717098902026783677007444329539143829751212071315753336428646552725750460900890181654204408069585619335474781863842058392384789719891301552645840910923925276482747695005854474974360500604389537925140668631873330583751570313 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 56451ca915f7b8f793e999be8330b78c761e7980 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bdsm-guide.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bdsm-guide.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018da170de35000004030048304602210092a6656aa393ca939c803d2bd6a814e907a202ef36ad60db8a0a38e6b6370d4b022100f3bae5529725211a1aa255059956bec1e20dd990987f0f1a2e5d33062503033f007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018da170dc5a0000040300473045022100d8d632feb125cbe31cc04ef0d9261099ab23507a6aeb14c1422f3d5a1c2535e702206b4170e249ca57088de5a225b14c47ec674b9e467756f20fc9e3ca99f896e61b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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