ringling.k12.ok.us

Issued by R10

About this certificate

This digital certificate with serial number 03:68:05:8f:3b:72:28:cc:64:f3:c7:e4:13:c7:91:93:c5:a1 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=ringling.k12.ok.us

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 03:68:05:8f:3b:72:28:cc:64:f3:c7:e4:13:c7:91:93:c5:a1
Serial Number (int): 296733613799194838839846412018562870003105
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 9c:33:8f:9d:0a:d5:1b:27:bd:47:af:c4:46:8d:38:05:25:a2:fb:b0
AuthorityKeyId: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (sha1): ff:72:6a:3e:d1:74:37:2c:ac:34:40:98:5d:33:f4:9b:26:3b:9c:fe
Fingerprint (sha256): 74:9d:4c:80:c2:7c:90:df:43:df:23:5b:63:a5:a0:10:db:84:79:c1:90:73:f4:f0:69:f4:ee:05:77:40:79:6e

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation information

OCSP Server: http://r10.o.lencr.org

Check the revocation status for certificate ringling.k12.ok.us

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ringling.k12.ok.us

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ringling.k12.ok.us
www.ringling.k12.ok.us

Other certificates including the domain name ringling.k12.ok.us

(limited to 100 certificates)
admin.spachs.ca
scsb.org
admin.ecec.whittiercity.net
mms.scsb.org
admin.ecec.whittiercity.net
admin.ecec.whittiercity.net
ringling.k12.ok.us
admin.ecec.whittiercity.net
ecec.whittiercity.net
ringling.k12.ok.us
admin.ecec.whittiercity.net
ringling.k12.ok.us
admin.ecec.whittiercity.net
ringling.k12.ok.us
ringling.k12.ok.us
ringling.k12.ok.us
admin.allenbrookelementaryschool.wearecms.com
admin.crownpointelementaryschool.wearecms.com

Certificate

The complete raw certificate details for ringling.k12.ok.us in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqVdg+pMyKIYQF5p+j5jW
jiwetkL6W6EugYmQ1TXaOqpVN6O8z8NEe4xfOS7dotGbQT7vais47aDuZ19nBlGL
K5MhVObAE6cFg+XV7j+83sSNxF4p4dsu/t/PDv4T1yUm6QVM8Rq7is0Hm0xHQgZ4
WJtjVMSjWM6BeXDRHTWzQRU7wv7/p4hxIRkbw18ILFdNy+PcfQgQi4m5b3xWLvNp
Pi5LQdQaDs2IBo5sqicr6BQcy8QXuh0mrfbVnQe/SFjyRudEcEH7CmAtOBAW0sjc
4x0Qd1QFFq16vJvJSjiO8hbXMBQt4mbUFaQFhPUclGRhgdUOxtPyuYyRr7v8Y6yu
YwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 296733613799194838839846412018562870003105
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-20 08:23:30 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-18 08:23:29 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ringling.k12.ok.us'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21377361643032991670888075505253008327380124432115488182059100021607203216851007325318262916983443581134010175331480309810647284559807180389848392826079199752638837411919411647924893191666294348744282105937328871489842294441117626071257400813077188547363885075431464597980734035552710108705814453269257655860211847258323569418004100174452279465366951585322133130555521502455712140151314571927458335405099010579322117308860657375079795221318431233850374148882166995312349209330441802583366083086221512268226200008652374997092405972083103158670800969895355067183281663588124572910207477833500245492031691368267848134243
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							9c338f9d0ad51b27bd47afc4468d380525a2fbb0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ringling.k12.ok.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ringling.k12.ok.us'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000019034f5525b0000040300473045022100da2a45ad30b21d30176104054cd87a10b626e1ac9e7f16b69a4b5ca582dccb77022011ff3be42e6b82bc5a9533826b72597fa7b9d5c829713802bb314fde927fdef00076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000019034f5525e000004030047304502204f1ad4419f061eab38e514366bfaafe17984300b93f4ffbb74d7b72946cc5be0022100f9209cc52a47be8f89843dd3ddc3c13f596a7fcb2a4ad3dfb29033dd141aaee1
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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