ringling.k12.ok.us
Issued by R10
About this certificate
This digital certificate with serial number 03:68:05:8f:3b:72:28:cc:64:f3:c7:e4:13:c7:91:93:c5:a1 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ringling.k12.ok.us
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:68:05:8f:3b:72:28:cc:64:f3:c7:e4:13:c7:91:93:c5:a1Serial Number (int): 296733613799194838839846412018562870003105
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 9c:33:8f:9d:0a:d5:1b:27:bd:47:af:c4:46:8d:38:05:25:a2:fb:b0
AuthorityKeyId: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8
Fingerprint (sha1): ff:72:6a:3e:d1:74:37:2c:ac:34:40:98:5d:33:f4:9b:26:3b:9c:fe
Fingerprint (sha256): 74:9d:4c:80:c2:7c:90:df:43:df:23:5b:63:a5:a0:10:db:84:79:c1:90:73:f4:f0:69:f4:ee:05:77:40:79:6e
Issuing Certificate URL: http://r10.i.lencr.org/
Revocation information
OCSP Server: http://r10.o.lencr.orgCheck the revocation status for certificate ringling.k12.ok.us
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ringling.k12.ok.us
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ringling.k12.ok.us
www.ringling.k12.ok.us
www.ringling.k12.ok.us
Other certificates including the domain name ringling.k12.ok.us
(limited to 100 certificates)
admin.spachs.ca
scsb.org
admin.ecec.whittiercity.net
mms.scsb.org
admin.ecec.whittiercity.net
admin.ecec.whittiercity.net
ringling.k12.ok.us
admin.ecec.whittiercity.net
ecec.whittiercity.net
ringling.k12.ok.us
admin.ecec.whittiercity.net
ringling.k12.ok.us
admin.ecec.whittiercity.net
ringling.k12.ok.us
ringling.k12.ok.us
ringling.k12.ok.us
admin.allenbrookelementaryschool.wearecms.com
admin.crownpointelementaryschool.wearecms.com
scsb.org
admin.ecec.whittiercity.net
mms.scsb.org
admin.ecec.whittiercity.net
admin.ecec.whittiercity.net
ringling.k12.ok.us
admin.ecec.whittiercity.net
ecec.whittiercity.net
ringling.k12.ok.us
admin.ecec.whittiercity.net
ringling.k12.ok.us
admin.ecec.whittiercity.net
ringling.k12.ok.us
ringling.k12.ok.us
ringling.k12.ok.us
admin.allenbrookelementaryschool.wearecms.com
admin.crownpointelementaryschool.wearecms.com
Certificate
The complete raw certificate details for ringling.k12.ok.us in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISA2gFjztyKMxk88fkE8eRk8WhMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTAwHhcNMjQwNjIwMDgyMzMwWhcNMjQwOTE4MDgyMzI5WjAdMRswGQYDVQQD ExJyaW5nbGluZy5rMTIub2sudXMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQCpV2D6kzIohhAXmn6PmNaOLB62QvpboS6BiZDVNdo6qlU3o7zPw0R7jF85 Lt2i0ZtBPu9qKzjtoO5nX2cGUYsrkyFU5sATpwWD5dXuP7zexI3EXinh2y7+388O /hPXJSbpBUzxGruKzQebTEdCBnhYm2NUxKNYzoF5cNEdNbNBFTvC/v+niHEhGRvD XwgsV03L49x9CBCLiblvfFYu82k+LktB1BoOzYgGjmyqJyvoFBzLxBe6HSat9tWd B79IWPJG50RwQfsKYC04EBbSyNzjHRB3VAUWrXq8m8lKOI7yFtcwFC3iZtQVpAWE 9RyUZGGB1Q7G0/K5jJGvu/xjrK5jAgMBAAGjggIuMIICKjAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAw HQYDVR0OBBYEFJwzj50K1RsnvUevxEaNOAUlovuwMB8GA1UdIwQYMBaAFLu8w0el 5LypxsOkcgwQjaI14cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEFBQcwAYYWaHR0 cDovL3IxMC5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDovL3IxMC5pLmxl bmNyLm9yZy8wNQYDVR0RBC4wLIIScmluZ2xpbmcuazEyLm9rLnVzghZ3d3cucmlu Z2xpbmcuazEyLm9rLnVzMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHW eQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMA AAGQNPVSWwAABAMARzBFAiEA2ipFrTCyHTAXYQQFTNh6ELYm4ayefxa2mktcpYLc y3cCIBH/O+Qua4K8WpUzgmtyWX+nudXIKXE4ArsxT96Sf97wAHYAPxdLT9ciR1iU HWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGQNPVSXgAABAMARzBFAiBPGtRBnwYe qzjlFDZr+q/heYQwC5P0/7t017cpRsxb4AIhAPkgnMUqR76PiYQ9093DwT9Zan/L KkrT37KQM90UGq7hMA0GCSqGSIb3DQEBCwUAA4IBAQAfiMpASwb4XeGyLC0ItGQh YJ5LDUmXgCrGWvEnH8EhQQRitiYjgryvA+7kvXF1VsIbWI0qXyhFw5xRc7J2ZIUS dgPD/1Vi6hCy4+gSbXbO/CqEJlsaY0lDDdu448y1WaxYbbdXGKa8/Du74zSNmzcj 3OJcqC/+oDQUJ/jw+fPGqvjOFIagSd5XSC6yGqV6s7AAuMNtad4EWzmSd5Xk/CUY RrD9IPq4j4wiK6VwFnMPlExLqi1IWhy0BCpadYHoEM/g+La994uRbMS44Z01iRyq qL6VhWsCud5SlKonUqX0Ic2nPlcTWKIXqTg2WZfhHHNW7KViiQ06uWVqFFX5zTuT -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqVdg+pMyKIYQF5p+j5jW jiwetkL6W6EugYmQ1TXaOqpVN6O8z8NEe4xfOS7dotGbQT7vais47aDuZ19nBlGL K5MhVObAE6cFg+XV7j+83sSNxF4p4dsu/t/PDv4T1yUm6QVM8Rq7is0Hm0xHQgZ4 WJtjVMSjWM6BeXDRHTWzQRU7wv7/p4hxIRkbw18ILFdNy+PcfQgQi4m5b3xWLvNp Pi5LQdQaDs2IBo5sqicr6BQcy8QXuh0mrfbVnQe/SFjyRudEcEH7CmAtOBAW0sjc 4x0Qd1QFFq16vJvJSjiO8hbXMBQt4mbUFaQFhPUclGRhgdUOxtPyuYyRr7v8Y6yu YwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 296733613799194838839846412018562870003105 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-20 08:23:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-18 08:23:29 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ringling.k12.ok.us' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21377361643032991670888075505253008327380124432115488182059100021607203216851007325318262916983443581134010175331480309810647284559807180389848392826079199752638837411919411647924893191666294348744282105937328871489842294441117626071257400813077188547363885075431464597980734035552710108705814453269257655860211847258323569418004100174452279465366951585322133130555521502455712140151314571927458335405099010579322117308860657375079795221318431233850374148882166995312349209330441802583366083086221512268226200008652374997092405972083103158670800969895355067183281663588124572910207477833500245492031691368267848134243 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9c338f9d0ad51b27bd47afc4468d380525a2fbb0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ringling.k12.ok.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ringling.k12.ok.us' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000019034f5525b0000040300473045022100da2a45ad30b21d30176104054cd87a10b626e1ac9e7f16b69a4b5ca582dccb77022011ff3be42e6b82bc5a9533826b72597fa7b9d5c829713802bb314fde927fdef00076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000019034f5525e000004030047304502204f1ad4419f061eab38e514366bfaafe17984300b93f4ffbb74d7b72946cc5be0022100f9209cc52a47be8f89843dd3ddc3c13f596a7fcb2a4ad3dfb29033dd141aaee1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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