www.freewrittenprophecy.com
Issued by R3
About this certificate
This digital certificate with serial number 04:e3:6f:8a:6d:5d:05:17:f5:67:77:62:71:df:51:f7:21:32 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.freewrittenprophecy.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:e3:6f:8a:6d:5d:05:17:f5:67:77:62:71:df:51:f7:21:32Serial Number (int): 425841504080745063561876716663688561893682
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 92:95:28:3a:99:58:70:0c:97:15:78:1a:98:d4:69:18:2a:88:5b:1a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): a8:77:01:4a:5a:6a:75:bf:a1:32:eb:f9:e7:d8:b6:de:73:0f:93:b3
Fingerprint (sha256): 81:24:0a:97:77:5f:1e:dd:7d:46:7a:06:40:6e:c9:0e:96:42:86:b0:bc:cb:23:26:46:95:b1:20:3a:9e:15:ac
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.freewrittenprophecy.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.freewrittenprophecy.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
freewrittenprophecy.com
www.freewrittenprophecy.com
www.freewrittenprophecy.com
Other certificates including the domain name freewrittenprophecy.com
(limited to 100 certificates)
www.freewrittenprophecy.com
freewrittenprophecy.com
www.freewrittenprophecy.com
freewrittenprophecy.com
www.freewrittenprophecy.com
www.freewrittenprophecy.com
www.freewrittenprophecy.com
www.freewrittenprophecy.com
www.freewrittenprophecy.com
www.freewrittenprophecy.com
freewrittenprophecy.com
freewrittenprophecy.com
www.freewrittenprophecy.com
freewrittenprophecy.com
freewrittenprophecy.com
freewrittenprophecy.com
www.freewrittenprophecy.com
freewrittenprophecy.com
www.freewrittenprophecy.com
www.freewrittenprophecy.com
www.freewrittenprophecy.com
www.freewrittenprophecy.com
www.freewrittenprophecy.com
www.freewrittenprophecy.com
freewrittenprophecy.com
freewrittenprophecy.com
www.freewrittenprophecy.com
freewrittenprophecy.com
freewrittenprophecy.com
Certificate
The complete raw certificate details for www.freewrittenprophecy.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgISBONvim1dBRf1Z3dicd9R9yEyMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MTEyMzM4MTZaFw0yNDA4MDkyMzM4MTVaMCYxJDAiBgNVBAMT G3d3dy5mcmVld3JpdHRlbnByb3BoZWN5LmNvbTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALWKyWzpv/HKZB4tMRA0c+m5YK8+EC/qHxslQ7jL+8OxZxyT 7KWBRfIingy4bS1JJV/a/ZknziMNH1/kaIGiSnsdMSyk9ETfSBOsYdYr12f2e6z8 SKkcZbg5Bx3CmPyMlh6bBrKbxEvpSLCF/SD/6Vx5MOu/dljQxTcQ3lIGEL1UD+nG EHH0MhzI6ZJXY1HHzEIOrmENQvqFjysIjbgOzoeFRmR6RmZExjDeoO8IWr85CBtZ r7ayITTNnei6RFXzlZJDHpvtN78efhuJmhZ3WACHq40STU3PP3qqwFTVrN1Yf+/n NwpFDjwAKcBJbS6ZvqUwuDdxX9uCG4wQ+hTGH00CAwEAAaOCAjQwggIwMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQUkpUoOplYcAyXFXgamNRpGCqIWxowHwYDVR0jBBgw FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y My5pLmxlbmNyLm9yZy8wPwYDVR0RBDgwNoIXZnJlZXdyaXR0ZW5wcm9waGVjeS5j b22CG3d3dy5mcmVld3JpdHRlbnByb3BoZWN5LmNvbTATBgNVHSAEDDAKMAgGBmeB DAECATCCAQIGCisGAQQB1nkCBAIEgfMEgfAA7gB1AD8XS0/XIkdYlB1lHIS+DRLt kDd/H4Vq68G/KIXs+GRuAAABj2o8cBkAAAQDAEYwRAIgeS3TDKVG9qCI/cplnWl2 7+Q+47FZdNa1oSJ25lpxkUsCIH6jdffoHB96ACnGCaeY+X76ol1puA4hAoZaRslW CSOEAHUAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGPajxwWAAA BAMARjBEAiAmVOPpj9BX3nqB6TNqitpLyUQotfLQIPDbeDDpxXJL7AIgOWBVb5f5 rdHd2x+WrXCGFyZ5cGC412yhKolzHuaBO1YwDQYJKoZIhvcNAQELBQADggEBAE16 PvLbHlLVSj0SGc9g7WfHL4sOhBsHKSKjQTUnMkP1o65ma3dfAfIQ4IjBv+33mwZS aJHRIUq49cN3LBKAUD9rNFqRubb8czWbMBa5OpdMKpVk/jjFArBRGe7nc2ON3r6w IvwcZ3aIYdmIB3iuTZylbpyrFMumUPhFMAOL51Y7U8ODpmCHeuGo0W87xqqwb235 aG0Cdyx6Pb0VoDgX9gtc7RYzQjaEsxjAe2oFjOD5W5sPf0ezCGx2kJmXTbMYsSoy u27El/GRecKOKwwe2/VG0KfcXQ1gIrAmmMu5gAWG5aTTSq+LqFaHCi9810opmPd7 0gc8qVttlqyVxw6gh40= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYrJbOm/8cpkHi0xEDRz 6blgrz4QL+ofGyVDuMv7w7FnHJPspYFF8iKeDLhtLUklX9r9mSfOIw0fX+RogaJK ex0xLKT0RN9IE6xh1ivXZ/Z7rPxIqRxluDkHHcKY/IyWHpsGspvES+lIsIX9IP/p XHkw6792WNDFNxDeUgYQvVQP6cYQcfQyHMjpkldjUcfMQg6uYQ1C+oWPKwiNuA7O h4VGZHpGZkTGMN6g7whavzkIG1mvtrIhNM2d6LpEVfOVkkMem+03vx5+G4maFndY AIerjRJNTc8/eqrAVNWs3Vh/7+c3CkUOPAApwEltLpm+pTC4N3Ff24IbjBD6FMYf TQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 425841504080745063561876716663688561893682 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-11 23:38:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-09 23:38:15 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.freewrittenprophecy.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22917571529608915377326485472844873535949721353480317287694749463834734580778561432025899703958921795738967663965480117872411929195937560650855589597918945889949841024028040579969843168531956078039044814149959749339317034655296155160969756464575854367799043666554809694934585345194255903626930283678402282798969544092744944774105805108596703813064555131539648373433527590094154451485606704556049924358769460444488506219181823586147420751594719411855015386679908935025094880677911587378693842251568839878411179039099582187744281780948050553488349763212880343568348851534063805611395108826935623716424621243901850033997 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9295283a9958700c9715781a98d469182a885b1a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'freewrittenprophecy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.freewrittenprophecy.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f6a3c701900000403004630440220792dd30ca546f6a088fdca659d6976efe43ee3b15974d6b5a12276e65a71914b02207ea375f7e81c1f7a0029c609a798f97efaa25d69b80e2102865a46c95609238400750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018f6a3c7058000004030046304402202654e3e98fd057de7a81e9336a8ada4bc94428b5f2d020f0db7830e9c5724bec02203960556f97f9add1dddb1f96ad70861726797060b8d76ca12a89731ee6813b56 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 004d7a3ef2db1e52d54a3d1219cf60ed67c72f8b0e841b072922a34135273243f5a3ae666b775f01f210e088c1bfedf79b06526891d1214ab8f5c3772c1280503f6b345a91b9b6fc73359b3016b93a974c2a9564fe38c502b05119eee773638ddebeb022fc1c67768861d9880778ae4d9ca56e9cab14cba650f84530038be7563b53c383a660877ae1a8d16f3bc6aab06f6df9686d02772c7a3dbd15a03817f60b5ced1633423684b318c07b6a058ce0f95b9b0f7f47b3086c769099974db318b12a32bb6ec497f19179c28e2b0c1edbf546d0a7dc5d0d6022b02698cbb9800586e5a4d34aaf8ba856870a2f7cd74a2998f77bd2073ca95b6d96ac95c70ea0878d