lgbtportland.com
Issued by R3
About this certificate
This digital certificate with serial number 03:ee:a9:63:05:89:da:ae:78:3f:03:ad:1a:65:37:40:23:2d was issued on by Let's Encrypt.
With 11 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=lgbtportland.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:ee:a9:63:05:89:da:ae:78:3f:03:ad:1a:65:37:40:23:2dSerial Number (int): 342549214803474724910403443247169203610413
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 8a:7b:01:99:10:d9:ff:4d:82:b3:56:3a:a2:b6:90:7f:4a:ce:4c:b0
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f5:72:36:29:bf:32:ce:8c:26:c0:95:ea:95:f4:e6:1e:ed:74:cb:1c
Fingerprint (sha256): 72:9d:41:2d:e1:39:8b:9f:5b:32:f1:22:e2:b2:97:10:19:a2:40:8e:12:f1:e6:74:32:b8:3d:76:d5:57:dc:9b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate lgbtportland.com
11
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lgbtportland.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
asiancommerce.com
behindthehiddenmask.com
hostingbetter.com
indianpharmaonline.com
lgbtportland.com
mccrackenlopez.com
monorhyme.com
neha.co.in
reevescounty.com
rodwrap.com
sanibelestateplanning.com
behindthehiddenmask.com
hostingbetter.com
indianpharmaonline.com
lgbtportland.com
mccrackenlopez.com
monorhyme.com
neha.co.in
reevescounty.com
rodwrap.com
sanibelestateplanning.com
Other certificates including the domain name lgbtportland.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for lgbtportland.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgISA+6pYwWJ2q54PwOtGmU3QCMtMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MjExMTAxMzBaFw0yNDA4MTkxMTAxMjlaMBsxGTAXBgNVBAMT EGxnYnRwb3J0bGFuZC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZt8lH9nV81w8cQ8+yZvvkHWhGFxCvjap6aVni2YofxPcNQC9/BzZ96kiAqg38 5lU1TYT7ijA42+EZEXK1f8d1pIImpdOxuEGFGKbN9+TwMyye2SkhJkuJ48XqJULD N28k11F1HOj1Vrb0RWmLnw04MPQrrXn1zzp8RVN0BBZBOWMiegWRhI3Vqn/swpks FnDftBc1Wz23KAky7/KHttfjVqGwx/NpI9d1fZkBQeGtc3V+JXeFZHw0DjkGDVG2 uQmim3jZx6/WVH0b5tVbwoTAnmDQjCQAVhQ/NyyiLtFVO1siPBAnbeVWZwKktLpW BR3rmtdhnFrTluZmLdS4WowNAgMBAAGjggLUMIIC0DAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFIp7AZkQ2f9NgrNWOqK2kH9KzkywMB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMIHdBgNVHREEgdUwgdKCEWFzaWFuY29tbWVyY2UuY29tghdiZWhpbmR0aGVo aWRkZW5tYXNrLmNvbYIRaG9zdGluZ2JldHRlci5jb22CFmluZGlhbnBoYXJtYW9u bGluZS5jb22CEGxnYnRwb3J0bGFuZC5jb22CEm1jY3JhY2tlbmxvcGV6LmNvbYIN bW9ub3JoeW1lLmNvbYIKbmVoYS5jby5pboIQcmVldmVzY291bnR5LmNvbYILcm9k d3JhcC5jb22CGXNhbmliZWxlc3RhdGVwbGFubmluZy5jb20wEwYDVR0gBAwwCjAI BgZngQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdgA/F0tP1yJHWJQdZRyE vg0S7ZA3fx+FauvBvyiF7PhkbgAAAY+bBy+4AAAEAwBHMEUCIQCJWS3mBTZbkrWP tGKY7XPnAwGm/Xq3XnQkWrD9gy96qAIgERvq+fCYDsSbwlVkWIT5dV2ePgXCaGEy UG+QmvzR8JsAdQB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAY+b BzADAAAEAwBGMEQCIBTUteraNyAQJur71NN3aKee45y7/8h78HiAIttgbAdJAiAH ajqsh9JxZ8vnB942Acq2RzUIhGaVjnPckmEtNgY1azANBgkqhkiG9w0BAQsFAAOC AQEAfSUrjqg0rRiycI7WOqqCpSWXgj5HO3edISkbFesLri602NaEK25AXe51H0Ht n++4Atj8Vv2CJ0+7QJVcKUS/GsIRM4pw9xB2A6KjXMYPXdQXEXT000IDMVilWXfE HJgrsmBynzCGwMo+7jKJ6tEg4DXx5ea3rqvfVlBFb/8Mjhs39pZfSYJHqOQ10njy HuBKoMeosYMzj+QSz3qnNjLp3tNIrbOWeIbNTg8KwyXTVXinS6b01gzabQlrWkEn 6wS25DoHQlGCq98+pzqWEV08GaV74c7wYSl1hnYYs1w2wBMQnF6TWe3DpRIWQFbt Z9EHVS82KRx76SdmgYCofv/8ug== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2bfJR/Z1fNcPHEPPsmb7 5B1oRhcQr42qemlZ4tmKH8T3DUAvfwc2fepIgKoN/OZVNU2E+4owONvhGRFytX/H daSCJqXTsbhBhRimzffk8DMsntkpISZLiePF6iVCwzdvJNdRdRzo9Va29EVpi58N ODD0K6159c86fEVTdAQWQTljInoFkYSN1ap/7MKZLBZw37QXNVs9tygJMu/yh7bX 41ahsMfzaSPXdX2ZAUHhrXN1fiV3hWR8NA45Bg1RtrkJopt42cev1lR9G+bVW8KE wJ5g0IwkAFYUPzcsoi7RVTtbIjwQJ23lVmcCpLS6VgUd65rXYZxa05bmZi3UuFqM DQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 342549214803474724910403443247169203610413 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-21 11:01:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-19 11:01:29 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lgbtportland.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27484340557402985040133650467018341398068365724538102993388985666686290792366224090975751896115156103174218571530492715964988641539029059749695608830363492226360963831859206291097075605032359702252637954796857060140487240234000771537994563229458463414598580826216770655980610227087872174232133277068100523166462520355260629183583333945816664457464987071121239833621541522649467233799791314564663930362419765965151804823619301154161805574161062086636206496092828929249775401515347889451576912995614911474697225987311254511486909212040491927344958547868778491677975993872821250554839626690090424880359301453614040124429 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8a7b019910d9ff4d82b3563aa2b6907f4ace4cb0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (213 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'asiancommerce.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'behindthehiddenmask.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hostingbetter.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'indianpharmaonline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lgbtportland.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mccrackenlopez.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'monorhyme.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'neha.co.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'reevescounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rodwrap.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sanibelestateplanning.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f9b072fb8000004030047304502210089592de605365b92b58fb46298ed73e70301a6fd7ab75e74245ab0fd832f7aa80220111beaf9f0980ec49bc255645884f9755d9e3e05c2686132506f909afcd1f09b00750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018f9b0730030000040300463044022014d4b5eada37201026eafbd4d37768a79ee39cbbffc87bf0788022db606c07490220076a3aac87d27167cbe707de3601cab64735088466958e73dc92612d3606356b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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